Security
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Limitations for Splunk Cloud outgoing traffic

cfcsolutions
Engager
‎04-03-2019 05:30 AM

We will be using a Splunk app (https://splunkbase.splunk.com/app/4422/ disclaimer: we made this app) to send out alerts from Splunk Cloud instances.

  1. Is the free Splunk cloud trial limited somehow in outgoing traffic?
  2. Is there any difference with a non-trial version?
  3. Is there any settings/rules that we should do to allow this traffic?
  4. From which component would the traffic go out? This is useful for us to whitelist this traffic.
Tags (2)
0 Karma
Reply

felsherif_splun
Splunk Employee
Splunk Employee
‎04-03-2019 09:51 AM
  1. Same as licensed Splunk Cloud, 5% of daily ingest for optimal performance, check out the FAQ for more details too, https://docs.splunk.com/Documentation/SplunkCloud/latest/FAQs/FAQs#Splunk_Cloud_Free_Trial_FAQ
  2. Assuming your alerts app alerting on search results like other alerts, then the recommended search results egress through API or even gui again is no more than 5% of ingested data, check also Splunk Cloud service description https://docs.splunk.com/Documentation/SplunkCloud/latest/Service/SplunkCloudservice
  3. You may have to submit a Support request to open the API port on your Splunk Cloud stack
  4. Ensure SSL - TCP 443 and API - TCP 8089 are allowed at your end, and yes you could request whitelist via a Support ticket too
Reply
Get Updates on the Splunk Community!

SOCin’ it to you at Splunk University

Splunk University is expanding its instructor-led learning portfolio with dedicated Security tracks at .conf25 ...

Credit Card Data Protection & PCI Compliance with Splunk Edge Processor

Organizations handling credit card transactions know that PCI DSS compliance is both critical and complex. The ...

Stay Connected: Your Guide to July Tech Talks, Office Hours, and Webinars!

What are Community Office Hours?Community Office Hours is an interactive 60-minute Zoom series where ...