스플렁크 RPM 설치 실패.
[root@Splunk ~]# rpm -ivh splunk-9.4.3-237ebbd22314.x86_64.rpm error: splunk-9.4.3-237ebbd22314.x86_64.rpm: headerRead failed: hdr data: BAD, no. of bytes(19932197) out of range error: splunk-9.4.3-237ebbd22314.x86_64.rpm cannot be installed | cs |
헤더 정보를 못 읽는다는 뜻인가? 설치 파일은 문제가 없는 것 같은데?
[root@Splunk ~]# file splunk-9.4.3-237ebbd22314.x86_64.rpm splunk-9.4.3-237ebbd22314.x86_64.rpm: RPM v3.0 bin i386/x86_64 splunk-9.4.3-237ebbd22314 | cs |
검색해보니 RPM-4.14.3 이상 버전을 사용하면 해결된다는데 문제는 없데이트가 안 된다.
================================================================================ Package Arch Version Repository Size ================================================================================ Updating: rpm x86_64 4.11.3-48.el7_9 updates 1.2 M rpm-libs x86_64 4.11.3-48.el7_9 updates 279 k Updating for dependencies: rpm-build-libs x86_64 4.11.3-48.el7_9 updates 108 k rpm-python x86_64 4.11.3-48.el7_9 updates 84 k Transaction Summary ================================================================================ Upgrade 2 Packages (+2 Dependent packages) Total download size: 1.6 M Is this ok [y/d/N]: | cs |
rpmfind.net 뒤져봤는데 설치 파일도 없고 해서 그냥 강제 설치(..)
[root@Splunk ~]# rpm -ivh splunk-9.4.3-237ebbd22314.x86_64.rpm --force warning: splunk-9.4.3-237ebbd22314.x86_64.rpm: Header V4 RSA/SHA256 Signature, key ID b3cd4420: NOKEY Preparing... ################################# [100%] no need to run the pre-install check useradd: cannot create directory /opt/splunk Updating / installing... 1:splunk-9.4.3-237ebbd22314 ################################# [100%] complete [root@Splunk ~]# whereis splunk splunk: /opt/splunk/bin/splunk [root@Splunk ~]# /opt/splunk/bin/splunk start --accept-license This appears to be your first time running this version of Splunk. Splunk software must create an administrator account during startup. Otherwise, you cannot log in. Create credentials for the administrator account. Characters do not appear on the screen when you type in credentials. Please enter an administrator username: admin Password must contain at least: * 8 total printable ASCII character(s). Please enter a new password: Please confirm new password: Copying '/opt/splunk/etc/openldap/ldap.conf.default' to '/opt/splunk/etc/openldap/ldap.conf'. Generating RSA private key, 2048 bit long modulus ..................................................................+++++ ...............+++++ e is 65537 (0x10001) writing RSA key Generating RSA private key, 2048 bit long modulus ........................................+++++ ............................+++++ e is 65537 (0x10001) writing RSA key Moving '/opt/splunk/share/splunk/search_mrsparkle/modules.new' to '/opt/splunk/share/splunk/search_mrsparkle/modules'. Splunk> All batbelt. No tights. Checking prerequisites... Checking http port [8000]: open Checking mgmt port [8089]: open Checking appserver port [127.0.0.1:8065]: open Checking kvstore port [8191]: open Checking configuration... Done. Creating: /opt/splunk/var/lib/splunk Creating: /opt/splunk/var/run/splunk Creating: /opt/splunk/var/run/splunk/appserver/i18n Creating: /opt/splunk/var/run/splunk/appserver/modules/static/css Creating: /opt/splunk/var/run/splunk/upload Creating: /opt/splunk/var/run/splunk/search_telemetry Creating: /opt/splunk/var/run/splunk/search_log Creating: /opt/splunk/var/spool/splunk Creating: /opt/splunk/var/spool/dirmoncache Creating: /opt/splunk/var/lib/splunk/authDb Creating: /opt/splunk/var/lib/splunk/hashDb Creating: /opt/splunk/var/run/splunk/collect Creating: /opt/splunk/var/run/splunk/sessions New certs have been generated in '/opt/splunk/etc/auth'. Checking critical directories... Done Checking indexes... Validated: _audit _configtracker _dsappevent _dsclient _dsphonehome _internal _introspection _metrics _metrics_rollup _telemetry _thefishbucket history main summary Done Checking filesystem compatibility... Done Checking conf files for problems... Done Checking default conf files for edits... Validating installed files against hashes from '/opt/splunk/splunk-9.4.3-237ebbd22314-linux-amd64-manifest' All installed files intact. Done All preliminary checks passed. Starting splunk server daemon (splunkd)... Generating a RSA private key .+++++ ..........................+++++ writing new private key to 'privKeySecure.pem' ----- Signature ok subject=/CN=Splunk/O=SplunkUser Getting CA Private Key writing RSA key PYTHONHTTPSVERIFY is set to 0 in splunk-launch.conf disabling certificate validation for the httplib and urllib libraries shipped with the embedded Python interpreter; must be set to "1" for increased security Done [ OK ] Waiting for web server at http://127.0.0.1:8000 to be available........................ Done If you get stuck, we're here to help. Look for answers here: http://docs.splunk.com The Splunk web interface is at http://Splunk:8000 | cs |
잘 되는 듯.
댓글 없음:
댓글 쓰기