I am a newbie at Splunk and am splunking, learning my way through the tutorials and practicing, but I want to know would be a typical Splunk implementation infrastructure in a real organization.
Example:
How many servers, how many forwarders, how many indexers, how many search heads?
From how many sources can data come in, what are the servers where Splunk Enterprise needs to be installed, and is this commonly used on Linux or Windows servers?
I would really appreciate any input
↧