1. ÆÄÀϾ÷·Îµå
# msiÆÄÀÏ
# ½º¼¦º¸°í Æ÷¿ö´õ ¼³Ä¡

2. ¼öÁý¼³Á¤ (°¢ ȯ°æ¼³Á¤ ÆÄÀÏ ¸¸µê)

1) #  C:\Program Files\SplunkUniversalForwarder\etc\system\local\inputs.conf
// È£½ºÆ®¸í È®ÀÎ
[default]
host = zenius-172
[default]
host = 
[default]
host = zenius-211n
[default]
host = mail_archive
[default]
host = sns.ktnet.com

[default]
host = OTP-HA1

È®Àθí·É¾î : C:\Program Files\SplunkUniversalForwarder\etc\bin\splunk.exe btool check

2) # C:\Program Files\SplunkUniversalForwarder\etc\system\local\server.conf
// ÀνºÅϽº¸í È®ÀÎ, 1ÀÇ È£½º¸í°ú °°ÀÌÇÒ°Í
[general]
serverName=spam2


È®Àθí·É¾î : C:\Program Files\SplunkUniversalForwarder\etc\bin\splunk.exe btool check


3) # C:\Program Files\SplunkUniversalForwarder\etc\system\local\limits.conf (¾øÀ¸¸é »ý¼ºÇÏ°í ¾Æ·¡¸¸ ÀÔ·Â)
// ÃÖ´ë File Descriptor °ª  (splunk°¡ Á¢±ÙÇÑ ÆÄÀÏ Å×ÀÌºí °ü¸®)
// ÃÊ´ç ó¸®ÇÒ ¼ö ÀÖ´Â ¿ë·® (´ÜÀ§: kilobytes)
[inputproc]
max_fd=50
[thruput]
maxKBps = 4096 (Àý¹ÝÀ¸·Î)

4) # C:\Program Files\SplunkUniversalForwarder\etc\system\local\outputs.conf
//172¸Á IP : 172.16.151.130
// forward¼­¹öÀÇ NATIP  (agent¼­¹ö À§Ä¡¿¡ µû¶ó IPº¯°æ ÇÊ¿ä)
[tcpout]
defaultGroup = default-autolb-group
[tcpout:default-autolb-group]
server = 175.114.137.56:9997
[tcpout-server://175.114.137.56:9997]

5) # C:\Program Files\SplunkUniversalForwarder\etc\instance.cfg (ÆÄÀÏÀÌ ¾øÀ¸¸é ½ºÇ÷·Å© ±âµ¿½Ã ½ÃÀ۵ǹǷΠ5¹ø »ý·«)
// guid°ªÀ» ÃʱâÈ­, ½ºÇ÷·Å© Àç±âµ¿ ½Ã ·£´ý°ªÀ¸·Î »ý¼ºµÊ
[general]
guid = E41498B6-2683 ¾î¼±¸ µÇ¾îÀÖ´Â ºÎºÐ¿¡¼­ °ªÀ» »èÁ¦ÇÏ°í ÀÌÄ÷ µÚ¸¦ ºñ¿öµÑ°Í

=>

guid=

6) C:\Program Files\SplunkUniversalForwarder\etc\system\local\deploymentclient.conf

¾Æ·¡°ª È®ÀÎ

[target-broker:deploymentServer]
targetUri = 175.114.137.61:8089