<h3 id="heading-step-1-download-splunk">Step 1: Download Splunk</h3>
<ol>
<li><p><strong>Download the</strong> <code>.tar.gz</code> Package: Go to the Splunk website and find the download page for Splunk Enterprise. Look for the <code>.tar.gz</code> package suitable for Linux. You can use <code>wget</code> to download it directly to your server:</p>
<pre><code class="lang-plaintext"> wget -O splunk-8.2.3-887a25f85366-linux-2.6-amd64.tgz 'https://www.splunk.com/bin/splunk/DownloadActivityServlet?architecture=x86_64&amp;platform=linux&amp;version=8.2.3&amp;product=splunk&amp;filename=splunk-8.2.3-887a25f85366-linux-2.6-amd64.tgz&amp;wget=true'
</code></pre>
</li>
<li><p>Step 2: Extract and Install Splunk:Once downloaded, extract the <code>.tar.gz</code> file to a directory of your choice. Typically, you would extract it to <code>/opt</code> directory:</p>
</li>
</ol>
<pre><code class="lang-plaintext">sudo tar -zxvf splunk-8.2.3-887a25f85366-linux-2.6-amd64.tgz -C /opt
</code></pre>
<p>Step 3: Start Splunk:</p>
<pre><code class="lang-plaintext">cd /opt/splunk/bin
sudo ./splunk start --accept-license
</code></pre>
<h3 id="heading-step-4-access-splunk-web-interface">Step 4: Access Splunk Web Interface</h3>
<ol start="4">
<li><strong>Access Splunk Web</strong>: Once Splunk has started successfully, you can access the Splunk web interface by opening a web browser and navigating to <code>http://&lt;your-server-ip&gt;:8000</code>.</li>
</ol>
<h3 id="heading-step-6-optional-enable-start-on-boot">Step 6: Optional - Enable Start on Boot</h3>
<ol start="6">
<li><strong>Enable Start on Boot (Optional)</strong>: To ensure Splunk starts automatically when the server boots up, use the following command:</li>
</ol>
<pre><code class="lang-plaintext">sudo /opt/splunk/bin/splunk enable boot-start
</code></pre>
<h3 id="heading-step-7-verification">Step 7: Verification</h3>
<ol start="7">
<li><strong>Verify Splunk Status</strong>: Check the status of Splunk to ensure it is running:</li>
</ol>
<pre><code class="lang-plaintext">sudo /opt/splunk/bin/splunk status
</code></pre>


### Step 1: Download Splunk

1. **Download the** `.tar.gz` Package: Go to the Splunk website and find the download page for Splunk Enterprise. Look for the `.tar.gz` package suitable for Linux. You can use `wget` to download it directly to your server:
    
    ```plaintext
    wget -O splunk-8.2.3-887a25f85366-linux-2.6-amd64.tgz 'https://www.splunk.com/bin/splunk/DownloadActivityServlet?architecture=x86_64&platform=linux&version=8.2.3&product=splunk&filename=splunk-8.2.3-887a25f85366-linux-2.6-amd64.tgz&wget=true'
    ```
    
2. Step 2: Extract and Install Splunk:Once downloaded, extract the `.tar.gz` file to a directory of your choice. Typically, you would extract it to `/opt` directory:
    

```plaintext
sudo tar -zxvf splunk-8.2.3-887a25f85366-linux-2.6-amd64.tgz -C /opt
```

Step 3: Start Splunk:

```plaintext
cd /opt/splunk/bin
sudo ./splunk start --accept-license
```

### Step 4: Access Splunk Web Interface

4. **Access Splunk Web**: Once Splunk has started successfully, you can access the Splunk web interface by opening a web browser and navigating to `http://<your-server-ip>:8000`.
    

### Step 6: Optional - Enable Start on Boot

6. **Enable Start on Boot (Optional)**: To ensure Splunk starts automatically when the server boots up, use the following command:
    

```plaintext
sudo /opt/splunk/bin/splunk enable boot-start
```

### Step 7: Verification

7. **Verify Splunk Status**: Check the status of Splunk to ensure it is running:
    

```plaintext
sudo /opt/splunk/bin/splunk status
```

How to install Splunk on Ubuntu 18.04 server

Step 1: Download Splunk

Step 4: Access Splunk Web Interface

Step 6: Optional - Enable Start on Boot

Step 7: Verification