Hi, is it possible to extract informations about Splunk System health check using command line ? For example I would like to execute some ./splunk command which will print all informations about current health check. Is it possible ? I would like to connect Icinga2 Monitoring system which will execute some command and extract some specified informations about current system performance. Is it possible ? Is there any command in CLI which will print all informations about system health check ? Thanks in advance for Your support. Cheers Dlugasny ... View more

Hi, our network count ~9000 Servers. Most of them running in the separate network IP segments. I would like to kindly ask You about log forwarding from that machines. Between indexer and some servers we have to build several hops (forwarders). How to build it properly ? Please take a look on that example: Example: Linux Server GROUP LAN1 (splunk forwarder which one ?) ----- > Splunk Forwarder (which one ?) LAN1 ----> Splunk Indexer Linux Server GROUP LAN4 ----> splunk forwarder LAN3 ---....---> Splunk Forwarder LAN1 --- > Splunk Indexer ? If I good understand Splunk architecture, on the each machine I have to install Splunk Universal Forwards(or lightforwarder ?) to transfer logs from the local running applications. Each Universal Forwarder installed on the app servers will push the logs to the heave forwarder which will be connected with the next hop (also Heave Forwarder or in the final step with the indexer). Is this the proper solution ? lightforwarder ---> heave forwarder ---> heavy forwarder ----> Indexer ? What about loadbalancing, we need it. If we would like to push logs from ~500 heavy loaded systems, we need minimum two machines I suspect. Is it possible to loadbalance such a traffic ? Thanks in advance for any hints. With kind regards Mike ... View more