公开(公告)号：US11748394B1

公开(公告)日：2023-09-05

申请号：US17812216

申请日：2022-07-13

Applicant: SPLUNK INC.

Inventor： Ledio Ago ,  Declan Gerard Shanaghy

IPC: G06F16/35 ,  G06F16/31

CPC classification number: G06F16/35 ,  G06F16/328

Abstract: In embodiments, at a first cluster, information identifying a plurality of indexers of the first cluster is determined based on a master node of the first cluster identifying active indexers within the first cluster. The information is transmitted from the first cluster to a second cluster. Such information can include a list of active indexers, and an indication of how to communicate with the plurality of indexers that is used by the second cluster in distributing a distributed search query. The distributed search query is received at the plurality of indexers of the first cluster. The distributed search query is distributed across the plurality of indexers based on the information identifying the plurality of indexers. A response is provided from at least one of the plurality of indexers, wherein each response from a respective indexer is generated based on an evaluation of the distributed search query.

公开(公告)号：US11436268B2

公开(公告)日：2022-09-06

申请号：US15967478

申请日：2018-04-30

Applicant: SPLUNK INC.

Inventor： Ledio Ago ,  Declan Gerard Shanaghy

IPC: G06F16/35 ,  G06F16/31

Abstract: The various embodiments describe multi-site cluster-based data intake and query systems, including cloud-based data intake and query systems. Using a hybrid search system that includes cloud-based data intake and query systems working in concert with so-called “on-premises” data intake and query systems can promote the scalability of search functionality. In addition, the hybrid search system can enable data isolation in a manner in which sensitive data is maintained “on premises” and information or data that is not sensitive can be moved to the cloud-based system. Further, the cloud-based system can enable efficient leveraging of data that may already exist in the cloud. In addition, various embodiments enable configuration data associated with search functionality to be shared amongst clusters in a manner that promotes cluster security. Specifically, a shared data store can be utilized to store configuration information such that when a particular cluster wishes to use the configuration information, it simply retrieves the configuration information from the shared data store, thus avoiding direct communication with other clusters. Although the invention has been described in language specific to structural features and/or methodological acts, it is to be understood that the invention defined in the appended claims is not necessarily limited to the specific features or acts described. Rather, the specific features and acts are disclosed as example forms of implementing the claimed invention.

公开(公告)号：US10887320B1

公开(公告)日：2021-01-05

申请号：US16439598

申请日：2019-06-12

Applicant: SPLUNK INC.

Inventor： Robin Kumar Das ,  Ledio Ago ,  Declan Gerard Shanaghy ,  Gaurav Gupta

IPC: G06F16/22 ,  H04L29/06 ,  G06F16/958 ,  G06F16/955 ,  G06F16/951 ,  G06F16/901 ,  G06F16/16 ,  G06F16/13 ,  G06F16/21 ,  G06F21/62 ,  H04L29/08 ,  H04L12/14 ,  G06F9/50 ,  G06F9/48 ,  G06Q20/14 ,  G06F16/9537

Abstract: Embodiments are directed towards a system and method for a cloud-based front end that may abstract and enable access to the underlying cloud-hosted elements and objects that may be part of a multi-tenant application, such as a search application. Search objects may be employed to access indexed objects. An amount of indexed data accessible to a user may be based on an index storage limit selected by the user, such that data that exceeds the index storage limit may continue to be indexed. Also, one or more projects can be elastically scaled for a user to provide resources that may meet the specific needs of each project.

公开(公告)号：US20180248890A1

公开(公告)日：2018-08-30

申请号：US15967398

申请日：2018-04-30

Applicant: SPLUNK INC.

Inventor： Robin Kumar Das ,  Ledio Ago ,  Declan Gerard Shanaghy ,  Gaurav Gupta

IPC: H04L29/06 ,  G06F17/30 ,  G06F21/62 ,  H04L29/08 ,  H04L12/14 ,  G06F9/50 ,  G06F9/48 ,  G06Q20/14

CPC classification number: H04L63/105 ,  G06F9/4887 ,  G06F9/5088 ,  G06F16/13 ,  G06F16/134 ,  G06F16/162 ,  G06F16/21 ,  G06F16/2228 ,  G06F16/2272 ,  G06F16/901 ,  G06F16/951 ,  G06F16/9537 ,  G06F16/955 ,  G06F16/986 ,  G06F21/6218 ,  G06Q20/145 ,  H04L12/1435 ,  H04L63/10 ,  H04L67/1097

Abstract: Embodiments are directed towards a system and method for a cloud-based front end that may abstract and enable access to the underlying cloud-hosted elements and objects that may be part of a multi-tenant application, such as a search application. Search objects may be employed to access indexed objects. An amount of indexed data accessible to a user may be based on an index storage limit selected by the user, such that data that exceeds the index storage limit may continue to be indexed. Also, one or more projects can be elastically scaled for a user to provide resources that may meet the specific needs of each project.

公开(公告)号：US09871803B2

公开(公告)日：2018-01-16

申请号：US15336834

申请日：2016-10-28

Applicant: Splunk Inc.

Inventor： Robin Kumar Das ,  Ledio Ago ,  Declan Gerard Shanaghy ,  Gaurav Gupta

IPC: G06F17/30 ,  H04L29/06 ,  G06Q20/14 ,  H04L12/14 ,  H04L29/08 ,  G06F9/48 ,  G06F9/50 ,  G06F21/62

CPC classification number: H04L63/105 ,  G06F9/4887 ,  G06F9/5088 ,  G06F17/30091 ,  G06F17/30094 ,  G06F17/30117 ,  G06F17/30289 ,  G06F17/30321 ,  G06F17/30336 ,  G06F17/30864 ,  G06F17/3087 ,  G06F17/30876 ,  G06F17/30896 ,  G06F17/30946 ,  G06F21/6218 ,  G06Q20/145 ,  H04L12/1435 ,  H04L63/10 ,  H04L67/1097

Abstract: Embodiments are directed towards a system and method for a cloud-based front end that may abstract and enable access to the underlying cloud-hosted elements and objects that may be part of a multi-tenant application, such as a search application. Search objects may be employed to access indexed objects. An amount of indexed data accessible to a user may be based on an index storage limit selected by the user, such that data that exceeds the index storage limit may continue to be indexed. Also, one or more projects can be elastically scaled for a user to provide resources that may meet the specific needs of each project.

公开(公告)号：US20160164873A1

公开(公告)日：2016-06-09

申请号：US15007184

申请日：2016-01-26

Applicant: Splunk Inc.

Inventor： Robin Kumar Das ,  Ledio Ago ,  Declan Gerard Shanaghy ,  Gaurav Gupta

IPC: H04L29/06 ,  G06F17/30

CPC classification number: H04L63/105 ,  G06F9/4887 ,  G06F9/5088 ,  G06F17/30091 ,  G06F17/30094 ,  G06F17/30117 ,  G06F17/30289 ,  G06F17/30321 ,  G06F17/30336 ,  G06F17/30864 ,  G06F17/3087 ,  G06F17/30876 ,  G06F17/30896 ,  G06F17/30946 ,  G06F21/6218 ,  G06Q20/145 ,  H04L12/1435 ,  H04L63/10 ,  H04L67/1097

Abstract: Embodiments are directed towards a system and method for a cloud-based front end that may abstract and enable access to the underlying cloud-hosted elements and objects that may be part of a multi-tenant application, such as a search application. Search objects may be employed to access indexed objects. An amount of indexed data accessible to a user may be based on an index storage limit selected by the user, such that data that exceeds the index storage limit may continue to be indexed. Also, one or more projects can be elastically scaled for a user to provide resources that may meet the specific needs of each project.

Abstract translation: 实施例涉及用于基于云的前端的系统和方法，该系统和方法可以抽象并使得能够访问可能是诸如搜索应用的多租户应用的一部分的基于云托管的元素和对象。 可以使用搜索对象来访问索引对象。 用户可访问的索引数据量可以基于用户选择的索引存储限制，使得超过索引存储限制的数据可以继续被索引。 此外，一个或多个项目可以弹性地缩放以供用户提供可满足每个项目的特定需求的资源。

公开(公告)号：US20160092570A1

公开(公告)日：2016-03-31

申请号：US14526500

申请日：2014-10-28

Applicant: Splunk Inc.

Inventor： Ledio Ago ,  Declan Gerard Shanaghy

IPC: G06F17/30 ,  H04L29/08

CPC classification number: G06F17/30864 ,  H04L67/10 ,  H04W4/60

Abstract: Various embodiments describe multi-site cluster-based data intake and query systems, including cloud-based data intake and query systems. Using a hybrid search system that includes cloud-based data intake and query systems working in concert with so-called “on-premises” data intake and query systems can promote the scalability of search functionality. In addition, the hybrid search system can enable data isolation in a manner in which sensitive data is maintained “on premises” and information or data that is not sensitive can be moved to the cloud-based system. Further, the cloud-based system can enable efficient leveraging of data that may already exist in the cloud.

Abstract translation: 各种实施例描述了基于多站点集群的数据采集和查询系统，包括基于云的数据采集和查询系统。 使用混合搜索系统，包括基于云的数据采集和与所谓的“本地”数据采集和查询系统协同工作的查询系统，可以提高搜索功能的可扩展性。 此外，混合搜索系统可以以敏感数据维护“在场所”的方式启用数据隔离，并且不敏感的信息或数据可以移动到基于云的系统。 此外，基于云的系统可以有效利用云中可能存在的数据。

公开(公告)号：US09225724B2

公开(公告)日：2015-12-29

申请号：US14733870

申请日：2015-06-08

Applicant: Splunk Inc.

Inventor： Robin Kumar Das ,  Ledio Ago ,  Declan Gerard Shanaghy ,  Gaurav Gupta

IPC: G06F9/46 ,  H04L29/06 ,  G06F17/30 ,  G06Q20/14 ,  H04L12/14 ,  H04L29/08 ,  G06F9/48 ,  G06F9/50

CPC classification number: H04L63/105 ,  G06F9/4887 ,  G06F9/5088 ,  G06F17/30091 ,  G06F17/30094 ,  G06F17/30117 ,  G06F17/30289 ,  G06F17/30321 ,  G06F17/30336 ,  G06F17/30864 ,  G06F17/3087 ,  G06F17/30876 ,  G06F17/30896 ,  G06F17/30946 ,  G06F21/6218 ,  G06Q20/145 ,  H04L12/1435 ,  H04L63/10 ,  H04L67/1097

Abstract: Embodiments are directed towards a system and method for a cloud-based front end that may abstract and enable access to the underlying cloud-hosted elements and objects that may be part of a multi-tenant application, such as a search application. Search objects may be employed to access indexed objects. An amount of indexed data accessible to a user may be based on an index storage limit selected by the user, such that data that exceeds the index storage limit may continue to be indexed. Also, one or more projects can be elastically scaled for a user to provide resources that may meet the specific needs of each project.

Abstract translation: 实施例涉及用于基于云的前端的系统和方法，该系统和方法可以抽象并使得能够访问可能是诸如搜索应用的多租户应用的一部分的基于云托管的元素和对象。 可以使用搜索对象来访问索引对象。 用户可访问的索引数据量可以基于用户选择的索引存储限制，使得超过索引存储限制的数据可以继续被索引。 此外，一个或多个项目可以弹性地缩放以供用户提供可满足每个项目的特定需求的资源。

公开(公告)号：US20140059036A1

公开(公告)日：2014-02-27

申请号：US14068445

申请日：2013-10-31

Applicant: Splunk Inc.

Inventor： Robin Kumar Das ,  Ledio Ago ,  Declan Gerard Shanaghy ,  Gaurav Gupta

IPC: G06F17/30

CPC classification number: H04L63/105 ,  G06F9/4887 ,  G06F9/5088 ,  G06F17/30091 ,  G06F17/30094 ,  G06F17/30117 ,  G06F17/30289 ,  G06F17/30321 ,  G06F17/30336 ,  G06F17/30864 ,  G06F17/3087 ,  G06F17/30876 ,  G06F17/30896 ,  G06F17/30946 ,  G06F21/6218 ,  G06Q20/145 ,  H04L12/1435 ,  H04L63/10 ,  H04L67/1097

Abstract: Embodiments are directed towards a system and method for a cloud-based front end that may abstract and enable access to the underlying cloud-hosted elements and objects that may be part of a multi-tenant application, such as a search application. Search objects may be employed to access indexed objects. An amount of indexed data accessible to a user may be based on an index storage limit selected by the user, such that data that exceeds the index storage limit may continue to be indexed. Also, one or more projects can be elastically scaled for a user to provide resources that may meet the specific needs of each project.

Abstract translation: 实施例涉及用于基于云的前端的系统和方法，该系统和方法可以抽象并使得能够访问可能是诸如搜索应用的多租户应用的一部分的基于云托管的元素和对象。 可以使用搜索对象来访问索引对象。 用户可访问的索引数据量可以基于用户选择的索引存储限制，使得超过索引存储限制的数据可以继续被索引。 此外，一个或多个项目可以弹性地缩放以供用户提供可满足每个项目的特定需求的资源。