Chapter 12. Advanced Deployments
When you first started Splunk, you probably installed it on one machine, imported some logs, and got to work searching. It is wonderful that you can try out the product so easily, but once you move into testing and production, things can get much more complicated, and a bit of planning will save you from trouble later.
In this chapter, we will discuss the following topics:
- Getting data
- The different parts of a distributed deployment
- Distributed configuration management
- Sizing your installation
- Security concerns
- Backup strategies
Planning your installation
The following are a few questions that you need to answer in order to determine how many Splunk instances will be involved in your deployment:
- How much data will be indexed ...
Get Implementing Splunk - Second Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
