All Apps and Add-ons
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
Solved! Jump to solution

Technology Add-on for pfSense Version 2.2.0 - 4 errors occurred while the search was executing

johnny21
Path Finder
‎10-27-2019 01:46 PM

Installed TA Addon Version 2.2.0 and it is almost working but get the error below, not sure exactly how to correct.

4 errors occurred while the search was executing. Therefore, search results might be incomplete. Hide errors.
Could not load lookup=LOOKUP-filterlog_action
Could not load lookup=LOOKUP-filterlog_tcpflags
Could not load lookup=LOOKUP-filterlog_transport
Could not load lookup=LOOKUP-openvpn_action

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

my2ndhead
SplunkTrust
SplunkTrust
‎10-29-2019 01:36 AM

Due to changes in the add-on build process the lookups were missing. Fixed in 2.2.1.

View solution in original post

0 Karma
Reply
Solved! Jump to solution

Ledge39
Engager
‎03-12-2021 02:11 AM

I'm also having the same problem.

Any help would be great.

0 Karma
Reply
Solved! Jump to solution

R0okey
New Member
‎03-10-2021 03:38 PM
  • Trying to install this integration for pfsense 2.5 and I’m getting the same errors. Any advice?
4 errors occurred while the search was executing. Therefore, search results might be incomplete.
  • Could not load lookup=LOOKUP-filterlog_action
  • Could not load lookup=LOOKUP-filterlog_tcpflags
  • Could not load lookup=LOOKUP-filterlog_transport
  • Could not load lookup=LOOKUP-openvpn_action
0 Karma
Reply
Solved! Jump to solution
Solution

my2ndhead
SplunkTrust
SplunkTrust
‎10-29-2019 01:36 AM

Due to changes in the add-on build process the lookups were missing. Fixed in 2.2.1.

0 Karma
Reply
Solved! Jump to solution

kenzo1234
Observer
‎08-01-2021 03:45 PM

with splunk 8.2.1, pfSense 2.5.1

installed app ta_pfsense 2.5.0

I get those 4 errors as well. what can I do to fix it. 

0 Karma
Reply
Solved! Jump to solution

fattylewis
Engager
‎08-01-2021 03:49 PM

Grab version 2.2.1 and copy the lookups directory from it and put it into 2.2.0 apps/TA-pfsense directory.

Reply
Solved! Jump to solution

nervatan
Observer
‎06-02-2021 07:08 AM

I'm having the same problem with version 2.5.0 

0 Karma
Reply
Solved! Jump to solution

o0chris0o
New Member
‎06-15-2021 02:44 PM

Did you figure out what was wrong?  I have the same problem with 2.5.0 and Splunk 8.2.0. I use universal forwarder on my pfsense to get the data in Splunk.

0 Karma
Reply
Solved! Jump to solution

fattylewis
Engager
‎07-01-2021 05:33 AM

Download version 2.2.1 from splunkbase and grab the lookups directory from it and put it in the apps/TA-pfsense directory.

Worked for me just now.

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

[Puzzles] Solve, Learn, Repeat: Character substitutions with Regular Expressions

This challenge was first posted on Slack #puzzles channelFor BORE at .conf23, we had a puzzle question which ...

Splunk Community Badges!

  Hey everyone! Ready to earn some serious bragging rights in the community? Along with our existing badges ...

[Puzzles] Solve, Learn, Repeat: Matching cron expressions

This puzzle (first published here) is based on matching timestamps to cron expressions.All the timestamps ...