Knowledge Management
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

New Splunk TcpOutput persistent queue

hrawat
Splunk Employee
Splunk Employee
4 weeks ago

https://docs.splunk.com/Documentation/Splunk/9.4.0/ReleaseNotes/MeetSplunk#What.27s_New_in_9.4


Why New Splunk TcpOutput Persistent Queue?

  • Don't have to  pay for  third party PQ & S3 puts.
  • Third party/ external S3 queue introduces permanent additional latency( due to detour to external S3 queue).
  • Third party/ external S3 queuing requires batching events, which adds additional latency in order to reduce S3 puts cost.
  • Unwanted additional network bandwidth usage incurred due to uploading all data to S3 and then downloading .
  • Third party imposes upload payload size limits.
  • On demand persistent queuing on forwarding tier when Indexer Clustering is down.
  • On demand persistent queuing on forwarding tier when Indexer Clustering indexing is slow due to high system load.
  • On demand persistent queuing on forwarding tier when Indexer Clustering is in rolling restart.hrawat_splunk_0-1736700631045.png

     

Labels (1)
Labels
0 Karma
Reply
Get Updates on the Splunk Community!

Developer Spotlight with Paul Stout

Welcome to our very first developer spotlight release series where we'll feature some awesome Splunk ...

State of Splunk Careers 2024: Maximizing Career Outcomes and the Continued Value of ...

For the past four years, Splunk has partnered with Enterprise Strategy Group to conduct a survey that gauges ...

Data-Driven Success: Splunk & Financial Services

Splunk streamlines the process of extracting insights from large volumes of data. In this fast-paced world, ...