What are components of Splunk/Splunk architecture?

Below are components of Splunk:

  1. Search head – provides GUI for searching
  2. Indexer – indexes machine data
  3. Forwarder – Forwards logs to Indexer
  4. Deployment server – Manages Splunk components in distributed environment

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.