Splunk Enterprise 10.0.1 (macOS, Linux, Windows) - 搜索、分析和可视化,数据全面洞察平台Splunk Enterprise 10.0.1 (macOS, Linux, Windows) - 搜索、分析和可视化,数据全面洞察平台
Search, analysis, and visualization for actionable insights from all of your data
请访问原文链接:https://sysin.org/blog/splunk-10/ 查看最新版。原创作品,转载请保留出处。
作者主页:sysin.org
Splunk Enterprise
对所有数据进行搜索、分析和可视化,获得可执行的洞察。
工作原理
Splunk 平台实现了从边缘到云的端到端可视化
搜索您的数据
探索任何类型和价值的数据——无论它存在于您的数据生态系统中的何处。
分析您的数据
通过监控、告警和运营报告,推动业务韧性。
可视化您的数据
创建自定义仪表盘和数据可视化 (sysin),从任何地方解锁洞察——无论是在运营中心、桌面、现场还是移动中。
基于数据采取行动
利用来自组织任何地方的数据,让您快速做出有意义的决策。
核心功能
随时随地访问您的数据
无论是在本地、家中、数据中心,还是多种环境的统一混合体验,均可利用平台。
机器学习与人工智能
预测与预防,而非仅仅反应。通过为数据赋予机器级智能,提升安全性和业务成果。
数据流处理
通过实时流处理,在毫秒级别内采集、处理并分发数据到 Splunk 及其他目的地。
可扩展索引
从数千个数据源采集和摄取数据 (sysin),规模达数 TB 级别。
协作工具
借助移动设备、电视和增强现实功能,实现随时随地的互动与协作。
分析工作区
即时响应,利用可视化功能。将日志转换为指标,提升搜索和监控性能,简化告警功能。
强大仪表盘
使用直观的仪表盘构建体验,轻松传达即使是最复杂的数据故事。
由 Splunk AI 驱动
Splunk AI 功能解锁更深入的洞察,加速人类决策与威胁响应。使用我们免费的机器学习应用——Splunk AI Assistant、异常检测助手、深度学习与数据科学应用以及机器学习工具包。此外,机器学习贯穿于我们的产品中,包括 Splunk IT 服务智能 (ITSI)、Splunk 用户行为分析 (UBA) 等。
系统要求
Unix operating systems
The table lists the Unix/Linux computing platforms that Splunk Enterprise supports (sysin). This list represents the operating systems that Splunk has tested. The ARM architecture is not supported for use with Splunk Enterprise at this time. Universal Forwarder ARM support is detailed in the following tables.
| Distribution Name | Architecture | Enterprise License | Free License | Trial License | Developer License | Universal Forwarder package |
|---|---|---|---|---|---|---|
| RHEL 8 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| RHEL 9 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| RHEL 8 | PPCLE | ✓ | ||||
| RHEL 8 | s390x | ✓ | ||||
| RHEL 8 | ARM (64-bit) | ✓ | ||||
| Ubuntu 20.04 | x86 (64-bit) | D | D | D | D | D |
| Ubuntu 22.04 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| Ubuntu 24.04 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| Amazon Linux 2 | x86 (64-bit) | D | D | D | D | D |
| Amazon Linux 2023 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| Amazon Linux 2 | ARM (64-bit) | D | ||||
| Amazon Linux 2023 | ARM (64-bit) | ✓ | ||||
| Rocky Linux/Alma Linux 8 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| Rocky Linux/Alma Linux 9 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| SLES 15 SP6 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| Debian 11 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| Debian 12 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| Solaris 11.4 | x86 (64-bit) | ✓ | ||||
| Solaris 11.4 | SPARC | ✓ | ||||
| Oracle Linux 8 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| Oracle Linux 9 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| FreeBSD 13 | x86 (64-bit) | ✓ | ||||
| FreeBSD 14 | x86 (64-bit) | ✓ | ||||
| AIX 7.2 | x86 (64-bit) | ✓ | ||||
| AIX 7.3 | x86 (64-bit) | ✓ | ||||
| raspi4 Ubuntu 20.04 | ARM (64-bit) | D |
✓: Splunk software is available for the platform.
D: Splunk supports this platform and architecture, but might remove support in a future release.
An empty box indicates software is not supported for this platform.
Windows operating systems
The table lists the Windows computing platforms that Splunk Enterprise and Universal Forwarder supports. The ARM Architecture is not supported on Splunk Enterprise and Universal Forwarder.
| Distribution Name | Architecture | Enterprise License | Free License | Trial License | Developer License | Universal Forwarder package |
|---|---|---|---|---|---|---|
| Windows Server 2019 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| Windows Server 2022 | x86 (64-bit) | ✓ | ✓ | ✓ | ✓ | ✓ |
| Windows Server 2025 | x86 (64-bit) | ✓ | ||||
| Windows 11 | x86 (64-bit) | ✓ | ||||
| Windows 10 | x86 (64-bit) | ✓ | ||||
| Windows 10 | x86 (32-bit) | ✓ |
✓: Splunk software is available for the platform.
An empty box indicates software is not supported for this platform.
update: Support for Windows Server 2016 x86 (64-bit) for version 10.0.1.
Mac operating systems
The table lists the Darwin computing platforms that Splunk Enterprise and Universal Forwarder supports. The M1/ARM Architecture is not supported on Splunk Enterprise.
| Distribution Name | Architecture | Enterprise License | Free License | Trial License | Developer License | Universal Forwarder package |
|---|---|---|---|---|---|---|
| macOS 13 | x86 (64-bit) | ✓ | ✓ | |||
| macOS 14 | x86 (64-bit) | ✓ | ✓ | |||
| macOS 15 | x86 (64-bit) | ✓ | ✓ | |||
| macOS 13 | ARM (Universal2) | ✓ | ||||
| macOS 14 | ARM (Universal2) | ✓ | ||||
| macOS 15 | ARM (Universal2) | ✓ |
✓: Splunk software is available for the platform.
An empty box indicates software is not supported for this platform.
新增功能
参看:Splunk Enterprise 10.0.0 新增功能简介
10.0.1 的新功能
Splunk Enterprise 10.0.1 于 2025 年 9 月 25 日发布。本版本修复了“已修复问题”部分中描述的问题。
| 新功能、增强或变更 | 描述 |
|---|---|
| 支持 Windows Server 2016 | 本次发布为 Splunk Enterprise 增加了对 Windows Server 2016 x86(64 位)的支持。 |
Splunk Enterprise 10.0.1 已修复的问题
本节包含在 Splunk Enterprise 各版本中已修复的关键问题信息。
未分类问题:
| 解决日期 | 问题编号 | 描述 |
|---|---|---|
| 2025-08-18 | SPL-283264 | 部署服务器无法保存更改 |
| 2025-07-11 | SPL-280668 | 修复 LDAP 搜索范围构造问题 |
下载地址
Splunk Enterprise 10.0.1 for macOS, Linux, Windows (2025-09-25)
- 10.0.1 was released on September 25, 2025. bug fixs & add Windows Server 2016 support.
- for macOS x64 (dmg): https://sysin.org/blog/splunk-10/
- for Linux x64 (rpm, deb, tgz): https://sysin.org/blog/splunk-10/
- for Windows x64 (msi): https://sysin.org/blog/splunk-10/
Splunk Universal Forwarder 10.0.0 for Unix, Linux, Windows
- 请访问:https://sysin.org/blog/splunk-10/
相关参考:Gartner Magic Quadrant for Security Information and Event Management 2024
更多:HTTP 协议与安全