Slowly gaining more experience with Splunk and realizing power of this unique app, I ventured into cluster setup for Splunk 6.1 as part of the current initiative for the client I’m working with.
Below is a quick step-by-step instructions set which I compiled mainly for myself as a documentation.
- Setup VMWare Virtual Machine (Azure services)
- Install and Setup Ubuntu Linux (Azure services)
- Install and Setup Splunk
- Indexes Configuration
- Enable Clustering
- Add second Splunk instance to the cluster
- * Potential problems
- Add third Splunk instance to the cluster (Search Head)