I have 2 options to get my data indexed.
I am using a Mikrotik router. I can do packet sniffer/streaming options to wireshark. (I don't care for this idea)
OR
If i do port mirroring to s...
Hi,
I am successfully mirroring a filtered set of events at a heavy forwarder and sending them to a local TCP Syslog target (syslog-ng) and all other events on to the primary indexer on a d...
...very 10 minutes and uses LFTP to do a mirror from the remote server's log directory. The most recent log file grows throughout the current hour, and may be pulled several times before it stabilizes a...
I have a standalone server (6.1.x) running some scheduled searches to consolidate data from multiple large sources into one summary index.
Now I would like to make this summary data simultaneously ...
I am trying to build some modular documentation as a Splunk app on a site with a indexer- and search head cluster. Some of the reasoning behind this is that I spend quite some time researching ...
...etwork Devices --> Syslog Server (UF Deployed) --> Single x Indexer
However, now I want to configure the UF to forward the mirror copies of some specific log paths to another indexer group a...
Hello There are several dashboards in the app created by others and there is a Clone button. I want to clone/mirror some dashboards which will be totally private i.e. only visible/e...
...othing is run on our current splunk server which is a slower VM.
So is there a way with clustering to mirror the index data to the office server and have searches only run off of there if people c...
...n the main domain.
Can deployment servers handle mirroring, wherein I can make a change on my main deployment server and it replicates those changes to all my gateways, who can then push out those c...