Splunk Enterprise
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Can not access splunk console at first time installed on EC2

shivprasad
New Member
‎12-08-2024 03:44 AM

I downloaded splunk Enterprise on EC2 at /opt folder using tgz file. unzipped it using tar. 
then started it on port no 8000. it shows i succesfully started at 8000. But after enabling 8000 port in ec2 security gruops and using the public ip of ec2 with :8000 I can't access the webpage. I just shows this site can't be reached. please help me.

0 Karma
Reply

meetmshah
SplunkTrust
SplunkTrust
‎12-08-2024 05:18 AM

Hello @shivprasad Can you please have a check on below list - 

1. Validate Splunk Service is Running - ./splunk status

2. Confirm for which range of IP addresses, port 8000 is Open

3. Validate If you’re using a VPC, ensure there’s an Internet Gateway attached and the route table includes a route for 0.0.0.0/0 pointing to the Internet Gateway

4. Try restarting Splunk service once - ./splunk restart

 

Also, Can you please confirm if there are any ERROR / WARN messages under - "/opt/splunk/var/log/splunk/splunkd.log" (Use tail command to validate)

0 Karma
Reply

shivprasad
New Member
‎12-08-2024 11:15 AM

thanks @meetmshah for taking this in notice. Fortunately I got the issue. 
I was doing everything correct except one thing, that is I was creating inbound rule of tcp 8000 after the instalation and after running the splunk. But when I at first created the inbound tcp 8000 rule and then installed the splunk and started it, so now everything is working fine.
Thanks again...

0 Karma
Reply

meetmshah
SplunkTrust
SplunkTrust
‎12-09-2024 07:36 AM

Glad to know the issue is resolved, please accept the solution - so it's marked as Resolved.

0 Karma
Reply
Get Updates on the Splunk Community!

Building Reliable Asset and Identity Frameworks in Splunk ES

 Accurate asset and identity resolution is the backbone of security operations. Without it, alerts are ...

Cloud Monitoring Console - Unlocking Greater Visibility in SVC Usage Reporting

For Splunk Cloud customers, understanding and optimizing Splunk Virtual Compute (SVC) usage and resource ...

Automatic Discovery Part 3: Practical Use Cases

If you’ve enabled Automatic Discovery in your install of the Splunk Distribution of the OpenTelemetry ...