Chapter 11. Advanced Deployments

When you first started Splunk, you probably installed it on one machine, imported some logs, and got to work searching. It is wonderful that you can try the product out so easily, but once you move into testing and production, things can get much more complicated, and a bit of planning will save you from trouble later.

In this chapter, we will discuss getting data in, the different parts of a distributed deployment, distributed configuration management, sizing your installation, security concerns, and backup strategies.

Planning your installation

There are a few questions that you need to answer to determine how many Splunk instances will be involved in your deployment:

How much data will be indexed per day? How much ...

Get Implementing Splunk: Big Data Reporting and Development for Operational Intelligence now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Implementing Splunk: Big Data Reporting and Development for Operational Intelligence by Vincent Bumgarner

Chapter 11. Advanced Deployments

Planning your installation

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly