Alerting

What are useful Splunk alerts to monitor huge logs indexing?

mala_splunk_91
Explorer

Hi ,

I need some insights on useful alerts to be created to monitor logs and indexing in common..
We have huge logs indexed daily. What kind to alerts can be created to monitor those in common.

need some use case.

Thanks

Mala S

Labels (1)
Tags (2)
0 Karma

mala_splunk_91
Explorer

Any general alerts to monitor incoming logs/indexed logs which is helpful for Splunk admins

for example: Detect the lag in indexing and alert on it.

 

0 Karma

richgalloway
SplunkTrust
SplunkTrust

The Alerts for Splunk Admins app (https://splunkbase.splunk.com/app/3796/) as a ton of examples.

---
If this reply helps you, Karma would be appreciated.
0 Karma

richgalloway
SplunkTrust
SplunkTrust

What do you mean by "indexing in common"?  In common with what?

---
If this reply helps you, Karma would be appreciated.
0 Karma
Get Updates on the Splunk Community!

Index This | I am a number, but when you add ‘G’ to me, I go away. What number am I?

March 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...

What’s New in Splunk App for PCI Compliance 5.3.1?

The Splunk App for PCI Compliance allows customers to extend the power of their existing Splunk solution with ...

Extending Observability Content to Splunk Cloud

Register to join us !   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to ...