Deployment Architecture

Hi i need to establish splunk in new environment so what are the requirements i need to setup splunk?

pavanae
Builder
 
Tags (2)
0 Karma
1 Solution

aljohnson_splun
Splunk Employee
Splunk Employee

tldr; system requirements documentation


Before you install, try looking at the installation manual.

  1. Review the system requirements for installation. Additional requirements might apply based on the operating system on which you install Splunk Enterprise and how you plan to use Splunk Enterprise.

  2. See "Components of a Splunk Enterprise deployment" to learn about the Splunk Enterprise ecosystem, and "Splunk architecture and processes" to learn what the installer puts on your computer.

  3. See "Secure your Splunk Enterprise installation" and, where appropriate, secure the machine on which you plan to install Splunk Enterprise.

  4. Download the installation package for your system from the Splunk Enterprise download page.

  5. Perform the installation by using the step-by-step installation instructions for your operating system.

  6. If this is the first time you have installed Splunk Enterprise, see the Search Tutorial to learn how to index data into Splunk and search that data using the Splunk Enterprise search language.

  7. After you install Splunk Enterprise, calculate how much space you need to index your data. See "Estimate your storage requirements" for more information.

  8. To run Splunk Enterprise in a production environment and to understand how much hardware such an environment requires, see the Capacity Planning manual.


Also checkout this splunk-sizing tool (not from Splunk)

View solution in original post

ppablo
Community Manager
Community Manager

Hi @pavanae

This is a very broad question. Have you already looked at the Installation documentation? There are a lot of things to consider such as the type of environment you want to set up, how much data you expect to be indexing, system requirements, and more. I'd suggest starting here:
http://docs.splunk.com/Documentation/Splunk/6.2.3/Installation/Beforeyouinstall
and if you have specific questions about any part of the process, then users on Splunk Answers can help you make sense of things.

0 Karma

aljohnson_splun
Splunk Employee
Splunk Employee

tldr; system requirements documentation


Before you install, try looking at the installation manual.

  1. Review the system requirements for installation. Additional requirements might apply based on the operating system on which you install Splunk Enterprise and how you plan to use Splunk Enterprise.

  2. See "Components of a Splunk Enterprise deployment" to learn about the Splunk Enterprise ecosystem, and "Splunk architecture and processes" to learn what the installer puts on your computer.

  3. See "Secure your Splunk Enterprise installation" and, where appropriate, secure the machine on which you plan to install Splunk Enterprise.

  4. Download the installation package for your system from the Splunk Enterprise download page.

  5. Perform the installation by using the step-by-step installation instructions for your operating system.

  6. If this is the first time you have installed Splunk Enterprise, see the Search Tutorial to learn how to index data into Splunk and search that data using the Splunk Enterprise search language.

  7. After you install Splunk Enterprise, calculate how much space you need to index your data. See "Estimate your storage requirements" for more information.

  8. To run Splunk Enterprise in a production environment and to understand how much hardware such an environment requires, see the Capacity Planning manual.


Also checkout this splunk-sizing tool (not from Splunk)

Get Updates on the Splunk Community!

Splunk Forwarders and Forced Time Based Load Balancing

Splunk customers use universal forwarders to collect and send data to Splunk. A universal forwarder can send ...

NEW! Log Views in Splunk Observability Dashboards Gives Context From a Single Page

Today, Splunk Observability releases log views, a new feature for users to add their logs data from Splunk Log ...

Last Chance to Submit Your Paper For BSides Splunk - Deadline is August 12th!

Hello everyone! Don't wait to submit - The deadline is August 12th! We have truly missed the community so ...