1. get the url from the splunk website
2. sudo wget the url
3. rename the downloaded file from download_track\?file\....bla to splunk-4.1.4.tgz
mv down........ splunk-4.1.4.tgz
4. sudo splunk/bin/splunk stop
5. sudo tar xvfz splunk-4.1.4.tgz
6. Accept EULA
7. sudo splunk/bin/splunk start
8. connect to server http://servername:8000
Splunk Indexes
When you add new data to Splunk it store it in an index
Indexes are stored here:
Splunk has been installed in:
/opt/splunk
To start Splunk, run the command:
/opt/splunk/bin/splunk start
/opt/splunk/bin/splunk start
To use the Splunk Web interface, point your browser at:
http://Your-SERVER:8000
SPlunk won't start after upgrade to 4.1.4
I ended up modifying the inputs.conf & indexes.conf to delete the references to splunklogger..
http://Your-SERVER:8000
SPlunk won't start after upgrade to 4.1.4
I ended up modifying the inputs.conf & indexes.conf to delete the references to splunklogger..
