Splunk Enterprise
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Splunk Install in kubernetes

adlas
Loves-to-Learn
3 weeks ago

Hi 

 

i am trying to install splunk universalforwader in Kubernetes using manifest yaml files (Apply daemonset )

pls let me know which version is working from :  which one is working dockage image for splunk/universalforwarder: ?

 

Thanks 

Adla

Labels (1)
Labels
0 Karma
Reply

livehybrid
SplunkTrust
SplunkTrust
3 weeks ago

Hi @adlas 

Check out https://hub.docker.com/r/splunk/universalforwarder/tags for the available versions - by default if you use splunk/universalforwarder:latest then it will use the latest published version (currently 10.0)

 

🌟 Did this answer help you? If so, please consider:

  • Adding karma to show it was useful
  • Marking it as the solution if it resolved your issue
  • Commenting if you need any clarification

Your feedback encourages the volunteers in this community to continue contributing

0 Karma
Reply

adlas
Loves-to-Learn
a week ago

Thanks for this information as i have used this image to run SPLUNK UF with Splunk user but unable to send logs to Splunk UI as /var/log/pods logs  are created by kubelet as its files system   is with root ,as splunk user unable to read this fiels to send data to splunk (But with Splunk UF running with Root we are able to send logs to Splunk ui But as requirement to use Splunk user instead of root user )

0 Karma
Reply

adlas
Loves-to-Learn
2 weeks ago

Thanks for thsi as i have used this versions and i am trying ti run this splunk container as non-root user and share logs with hostpath ...But still its running as Root user 

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Enterprise Security 8.x: The Essential Upgrade for Threat Detection, ...

Watch On Demand the Tech Talk on November 6 at 11AM PT, and empower your SOC to reach new heights! Duration: ...

Splunk Observability as Code: From Zero to Dashboard

For the details on what Self-Service Observability and Observability as Code is, we have some awesome content ...

[Puzzles] Solve, Learn, Repeat: Character substitutions with Regular Expressions

This challenge was first posted on Slack #puzzles channelFor BORE at .conf23, we had a puzzle question which ...