Back to the Blog

Measuring Splunk Indexer Performance with IOMeter

Posted by Anshu Rastogi on Friday, December 13, 2013 - 13:26 Operational Intelligence disk i/o, iometer, IOPS, Splunk, Splunk Indexer

Welcome! In this post I'd like to cover testing the I/O performance of your indexer to its storage sub-system.

'After the party, it's the hotel lobby'

You can think of your indexer as the lobby of a busy hotel with the hotel guests being your data. In this hotel, guests are constantly streaming into the lobby (raw event data). At the same time, guests are frequently leaving the hotel (search queries) to go on around the city, either periodically in buses (scheduled saved searches) or in an ad-hoc manner by taxi (user searches). To prevent the lobby from filling up from the...

read more

Using HTTP with a HTTPS Proxy Forwarder in Splunk

Posted by Kate Engel on Monday, October 28, 2013 - 14:32 Operational Intelligence Salesforce, Splunk, Splunk Indexer, TA-SFDC

I recently ran into an issue  with the Splunk Forwarder and found that we can solve it with a simple python script udpate.  This is applicable to the Salesforce app for Splunk, but could be applicable to other use cases as well.

Here, the requirement was to install the Salesforce TA into Splunk and configure the TA to pull data from Salesforce into Splunk. After downloading the TA and enabling the necessary inputs from Salesforce, I checked Splunk for data…nothing.

Why isn’t the Salesforce data coming into Splunk??

Next, I went to the internal logs in Splunk by...

read more
Stay In Touch