We have a Global deployment server which pushes apps to the Regional deployment servers in AMER, ASIA and EU. Forwarders in each region connect to the Regional DS.
The forwarders appears to be d...
...ssential.
I have considered a typical clustered deployment with a single master node, a single search head, a pair of indexers (peer nodes), and a pair of forwarders. There would be one peer indexer and o...
S.o.S - Splunk on Splunk > DeploymentTopology
Splunk Topology by Server Role
show incorrect version for remote universal forwarder
S.o.S reports 'Splunk version 4.3.3'
Host itself r...
...ourctype/port the data should be forwarded to an additional indexer (to our security operations center). I have tried similar to Define typical forwarderdeploymenttopologies but so f...
Hi All,
Our company has recently hopped on the Splunk bandwagon and we've set up a small distributed environment of 1 x search head, 2 x indexers and an intermediate forwarder for data filtering/f...
I have a Splunk Enterprise/Splunk Cloud deployment that's been on autopilot for a while. We've been adding data sources and use cases, but I think there's a lot more we can get out of Splunk, and I...
...o evaluate the deployment of Splunk on containerized infrastructures that are not covered by Splunk support. The community supports these Docker images. See https://hub.docker.com/r/splunk/splunk/....
Would it be possible to run this application in the following fashion -
On local/on-premise machines perform the scanning - then using the local forwarder to send results to Splunk in the Cloud (w...
...To do this I though, there are 2 different ways. Could someone help me to understand which is the best one?
Use the first Splunk instance as a heavy forwarder which will use the t...