Joe is a Sr. Professional Services Engineer at SP6. Joe is extremely well versed in Splunk systems architecture, deployment, implementation and integration, with emphasis on the premium Splunk Enterprise Security app. He has vast experience in computer systems maintenance, installation and design, and brings depth, knowledge and technical acumen to the table in any project assigned, whether as a team member or team leader.
In a Splunk environment, Splunk operations are controlled by configuration files (conf files). Configuration of the file settings are essential to the proper running of the Splunk instance. In this article, we walk through how to properly configure the file settings to ensure that your Splunk instance is running optimally.
Did you know that all Splunk Knowledge Objects (KO) generated during a search are maintained in memory? Sure, any one KO in itself doesn’t take up a lot of memory, but run a search that returns 10 million events… You can do the math!
