Documentation > Splunk > Installation Manual > Splunk-2-Splunk Setup

Installation Manual

 


Before You Start
Step by Step
More Help

Splunk-2-Splunk Setup

This documentation does not apply to the most recent version of Splunk. Click here for the latest version.

Contents

Splunk-2-Splunk Setup

2.0 Splunk-2-Splunk migration

If you have a network of Splunk 2.0.x servers configured for Splunk-2-Splunk distributed data access, see the 2.0 to 2.1 Migration Instructions.


Splunk 2.1 lets you configure Splunk-2-Splunk data forwarding, data receving and distributed search on the Admin page of Splunk's GUI, or through the command line interface. Both have built-in help. The GUI displays a diagram of which servers are fowarding, receiving, or handling distributed searches.


Browser-based configuration

Command line configuration

Type this command to see built-in help for configuring the Splunk Server:


# /opt/splunk/bin/splunk help s2s

Below are the built-in command line help entries related to Splunk-2-Splunk configuration.


s2s (splunk-2-splunk)

Splunk-2-Splunk configuration management


These commands require a Splunk Professional license.


Actions

Objects

broadcast availability for Distributed Search from other Splunk Servers


distribute searches to other Splunk Servers


reception of data to be indexed from other Splunk Servers


a Splunk Server to which to forward data to be indexed


a Splunk Server to which to forward searches


Default Parameter

Required Parameters

Optional Parameters

Type "help [object]" to see the parameters specific to each type of object.


Examples

# splunk enable listen 18089

# splunk enable discoverable -auth gwb:d3cidr

search-server

Splunk-2-Splunk distributed search configuration management


These commands require a Splunk Professional license.


Actions & Objects

Default Parameter

the Splunk Server name of the server to configure


Required Parameters

Optional Parameters

username:password to authenticate the command to a Splunk Professional server


Examples

# splunk add search-server production02 -auth gwb-d3cidr

forward-server

Splunk-2-Splunk data forwarding configuration management


These commands require a Splunk Professional license.


Actions

Default Parameter

the Splunk Server name of the server to configure


Required Parameter

Optional Parameters

username:password to authenticate the command to a Splunk Professional server


Examples

# splunk add forward-server production02 -auth gwb:d3cidr

enable, disable, display, discoverable, listen, dist-search

Actions

Objects

broadcast availability for Distributed Search from other Splunk Servers


distributed searches to other Splunk Servers


reception of data to be indexed from other Splunk Servers


Default Parameter

TCP port number on which to listen for data from other Splunk Servers - default is 8089


Required Parameters

Optional Parameters

username:password to authenticate the command to a Splunk Professional server


Examples

# splunk enable listen

# splunk enable listen 18089

# splunk enable listen -source 18089 (same thing, since -source is the default parameter)

# splunk enable discoverable -auth gwb:d3cidr

Retrieved from "http://docs.splunk.com/Documentation/Splunk/2.2/Installation/Splunk2SplunkSetup"

This documentation applies to the following versions of Splunk: 2.1 , 2.2 , 2.2.1 , 2.2.3 , 2.2.6 View the Article History for its revisions.


You must be logged into splunk.com in order to post comments. Log in now.

Was this documentation topic helpful?

If you'd like to hear back from us, please provide your email address:

We'd love to hear what you think about this topic or the documentation as a whole. Feedback you enter here will be delivered to the documentation team.