Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
36 results
Sorted by:
03-06-2017
07:08 AM
We have an indexer which is going to be down for several days, so in preparation for that I performed these steps:
splunk offline on site1 indexer
Changed server.conf on the cluster m...
06-21-2019
06:04 AM
...Search Head, 1 Deployment / License server, 1 Cluster manager and 2 Indexers. I also have a corporate network and my DMZ network. I am using the SPLUNK TA for Windows as well as the SPLUNK TA for S...
12-29-2020
11:08 PM
Hello Splunk Gurus, I would like to understand if Splunk has solved this problem about auto-scaling Splunk Indexer-Cluster depending upon the incoming data-volume in AWS via tools like K8s or T...
Labels
- Labels:
-
capacity planning
-
indexer clustering
05-03-2016
01:44 PM
2 Karma
Trying to understand what the procedure would be to migrate data. Situation:
Indexer was standalone. Has standalone buckets in some of its indexes. Was added to a multisite cluster. So now some b...
12-04-2019
02:35 AM
...hile (while documentation states that indexers within a cluster should all be the same version.)
Is it possible to split the rolling upgrade process between two business days?
If yes, should the cluster...
08-05-2015
03:03 AM
3 Karma
I have a multisite cluster with 2 sites and 2 indexers per site. I'm receiving the following error on the cluster master:
site_replication_factor={ origin:1, total:2 } is less than r...
08-26-2020
03:19 AM
How Splunk indexers operations works when it comes into manual detention state ? We are migrating from RHEL 6 - RHEL 8 and here can't do OS upgrade on the same machine , so we will be getting new R...
03-04-2020
10:00 AM
As the title already states, It is expected to lists all indexes and not just internal ones.
I have read in other question that the possible solution is to set replication_factor to auto but not q...
indexes.png (1 KB)
05-03-2016
03:05 AM
In our environment, we have one master node and four indexers, out of which 3 indexers are located in a production site and the last indexer is in a Disaster Recovery site. The setup is made in s...
issue-indexer-showing-as-pending-state.png (1 KB)
12-24-2017
04:59 AM
...hat everything is replicated.
Shutdown the cluster master
Rebuild the master
Reconnect the index peers to the new master. I do plan on changing the pass4SymKey.
The documentation states that I...
