Splunk Operator Telemetry

A telemetry solution to collect data from the Splunk Enterprise instances deployed using the Splunk Operator for Kubernetes(SOK) is implemented. The operator installs an app called app_tel_for_sok8s_<kind_of_deployment> into primary Splunk Instances. The newly installed app’s data will be exported as a part of Splunk Enterprise telemetry solution to the telemetry prod servers. The exported telemetry data will help understand number and kind of Splunk deployments using SOK.

As per Splunk Documentation for your deployment to send data to Splunk, the primary instance responsible for the searches must be connected to the internet with no firewall rules or proxy server configurations that prevent outbound traffic to https://quickdraw.splunk.com/telemetry/destination or https://*.api.splkmobile.com. If necessary, add these URLs for outbound traffic to your firewall allow list.