Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Binding splunk-web to an ip address - WARNING: web interface does not seem to be available!

ikulcsar
Communicator
‎01-16-2017 06:15 AM

Hello,

We have a distributed Splunk system. Every indexers have 2 IPs (ip1 and ip2) addresses (and 2 NICs, too). The goal is to bind the web interface to ip1 while keeping the ability to receive logs on both IPs.

I've already checked https://docs.splunk.com/Documentation/Splunk/latest/Admin/BindSplunktoanIP and serveral questions here with no luck.
When set server.socket_host setting in web.conf to ip1, and leave SPLUNK_BINDIP, mgmtHostPort on default I recieved this at Splunk startup. 

Waiting for web server at http://127.0.0.1:8000 to be available............................................................................................................................................................................................................................................................................................................

WARNING: web interface does not seem to be available!

From 'ss -na' output:

LISTEN      0      128           <ip1>:8000                      *:*
UNCONN      0      0                   *:514                        *:*

Ip1 is not 127.0.0.1, so it will never succeed to connect... but logs can be recieved on any ip. System seems to operational.

How can I handle this warning, Is there a way to achieve my goal without an error?

About the system: Splunk v6.5.1 on 64bit linux, multiple search heads and indexers, no firewall.

Thanks,
Istvan

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

ikulcsar
Communicator
‎03-01-2017 01:30 AM

Hi,

I received information from tech support, This is a bug, they will fix it in one of the upcoming releases.

Regards,
István

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

ikulcsar
Communicator
‎03-01-2017 01:30 AM

Hi,

I received information from tech support, This is a bug, they will fix it in one of the upcoming releases.

Regards,
István

0 Karma
Reply
Solved! Jump to solution

ikulcsar
Communicator
‎08-22-2017 07:01 AM

Fixed in 6.6.3: https://docs.splunk.com/Documentation/Splunk/6.6.3/ReleaseNotes/6.6.3
Issue numbers: SPL-136496, SPL-141953, SPL-141956

0 Karma
Reply
Get Updates on the Splunk Community!

Routing logs with Splunk OTel Collector for Kubernetes

The Splunk Distribution of the OpenTelemetry (OTel) Collector is a product that provides a way to ingest ...

Welcome to the Splunk Community!

(view in My Videos) We're so glad you're here! The Splunk Community is place to connect, learn, give back, and ...

Tech Talk | Elevating Digital Service Excellence: The Synergy of Splunk RUM & APM

Elevating Digital Service Excellence: The Synergy of Real User Monitoring and Application Performance ...