Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Splunk maintenance

teddyidc1101
Communicator
‎05-15-2018 05:02 PM

Is there maintenance procedure that Splunk Enterprise/deployment/instance requires periodically to ensure high performance?

Is there an app that can be used to this?

Please share. thanks!

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

HiroshiSatoh
Champion
‎05-15-2018 06:18 PM

Is it the maintenance of "Splunk Enterprise"? Or is it a deployment server maintenance?

Splunk does not need maintenance in particular, and I think that it is enough to restart the server at regular intervals.

If you need advanced performance, please refer to the administrator's manual etc.

Capacity Planning Manual
http://docs.splunk.com/Documentation/Splunk/7.1.0/Capacity/Referencehardware

Optimize Splunk for peak performance
https://docs.splunk.com/Documentation/Splunk/7.1.0/Admin/OptimizeSplunkforpeakperformance

Splunk Sizing and Performance
https://www.splunk.com/blog/2014/05/07/splunk-sizing-and-performance-doing-more-with-more.html

View solution in original post

Reply
Solved! Jump to solution
Solution

HiroshiSatoh
Champion
‎05-15-2018 06:18 PM

Is it the maintenance of "Splunk Enterprise"? Or is it a deployment server maintenance?

Splunk does not need maintenance in particular, and I think that it is enough to restart the server at regular intervals.

If you need advanced performance, please refer to the administrator's manual etc.

Capacity Planning Manual
http://docs.splunk.com/Documentation/Splunk/7.1.0/Capacity/Referencehardware

Optimize Splunk for peak performance
https://docs.splunk.com/Documentation/Splunk/7.1.0/Admin/OptimizeSplunkforpeakperformance

Splunk Sizing and Performance
https://www.splunk.com/blog/2014/05/07/splunk-sizing-and-performance-doing-more-with-more.html

Reply
Solved! Jump to solution

teddyidc1101
Communicator
‎05-15-2018 06:39 PM

Thanks for sharing!
To answer your question, i would say for both.

So that would mean a that if the hardware and software are performing well and being maintained on a regular basis, Splunk Enterprise will be ok already?

0 Karma
Reply
Solved! Jump to solution

HiroshiSatoh
Champion
‎05-15-2018 07:19 PM

We monitor server monitoring, process monitoring, resource monitoring, log reception monitoring as normal operation confirmation.

0 Karma
Reply
Solved! Jump to solution

teddyidc1101
Communicator
‎05-16-2018 06:07 AM

ok thanks! this clears up things 🙂

0 Karma
Reply
Get Updates on the Splunk Community!

Routing logs with Splunk OTel Collector for Kubernetes

The Splunk Distribution of the OpenTelemetry (OTel) Collector is a product that provides a way to ingest ...

New This Month - Observability Updates Give Extended Visibility and Improve User ...

This month is a collection of special news! From Magic Quadrant updates to AppDynamics integrations to ...

Intro to Splunk Synthetic Monitoring

In our last post, we mentioned that the 3 key pieces of observability – metrics, logs, and traces – provide ...