Deployment Architecture

Discussions

Thread Info

Error message: "Search process did not exit cleanly, exit_code=255, description="exited with code 255". Please look in search.log "

I have deployed search head app from deployer to search head clustering environment.. but while querying any search i...

by New Member in

Getting rid of Index Clustering

Hi Team, I have a single site Indexer clustering in place. I have two indexers and one search head as the members....

by Path Finder in

Unable to initialize modular input "jms" defined inside the app "jms_ta"

Why am I getting this error ? I've installed a brand new latest release of splunk and the jms mq app, followed the...

by Engager in

Why is the LDAP User Default App Not Used in Search Head Cluster and Defaults to Launcher?

LDAP User configured default application does not take effect within a Search Head Cluster with LDAP configurations d...

by Contributor in

Configure Splunk Forwarder only with admin account

Hello, I'm running Splunk free trial 7.0.1. I need to create an user to configure my forwarder, but not with the...

by Explorer in

Is it possible to limit bucket replication with limits.conf?

We recently set up a multisite with replication between the sites. This is causing network congestion when it comes ...

by Path Finder in

After communication issues between cluster nodes getting replication factor not met for search and indexing

We had some communication issues the past couple of days and not my index master node is telling me that my replicati...

by Builder in

Why does my Splunk Cloud 7.0.0.1 instance generate a very high volume of errors "bucket archiving failed"?

Hi, My instance of Splunk Cloud 7.0.0.1 generates a very high volume of errors of this type: 03-12-2018 13:37:0...

by Path Finder in

Can I specify another location for splunk to look for apps?

I am working on automation and I would like to know if there is a way to configure splunk ALSO look to an alt directo...

by Builder in

Different storage space occupancy within index cluster

Dear Splunk community, I'm relative new within the splunk cluster topic. Since three years I'm using Splunk in a ...

by Engager in

Why New Index is disabled by default after creation?

Hello, after creation , the index is disabled by default (so to manually enable I need to restart server). is there a...

by Path Finder in

Why is there a failure error when integrating splunk SH cluster with Indexing Cluster?

We have 3 node indexer Cluster and have setup a 3 node Search Head(SH) cluster. We are trying to integrate the SH clu...

by New Member in

Multisite Indexer Clustering

I am looking at possible setting up multisite indexer clustering on some new indexers we are setting up. We have 2 in...

by Path Finder in

What areas to investigate for an overall health check of our distributed Splunk instance?

Good Day all, We have a distributed splunk instance running for 3 years and recently a couple of our other server...

by Communicator in

New HF in 7.01 - how to add to license/deployment server?

I have a small Splunk installation and I'm adding a new HF. I just upgraded my current servers to 7.0.1. When I perfo...

by Builder in

Cleaning Indexes not working

Hi SplunkBase Trying out the free version (4.2.4) on my Windows 7 64bit client and as you can guess, hit an index lim...

by Explorer in

Multiple Search Heads - Possible Clustering of Virtual and Physical?

What started as a plan to stand up a new/additional VM Search Head dedicated to a specific department in IT has turne...

by Path Finder in

Performance problem OPC UA for Splunk

Hi, I'm having problems when getting metrics to add a new input on OPC UA for Splunk. My OPC server is conected wi...

by New Member in

limit bin entries to 1

How do I limit the Upper and Lower limits to just 1, rather than 40 or 50 values

by Explorer in

How to produce rows for non-existing time buckets?

I have produced a table like this: +----------+---------+---------+-------+ | _time | field_1 | field_2 | count...

by New Member in

Deployment Architecture

Discussions

Error message: "Search process did not exit cleanly, exit_code=255, description="exited with code 255". Please look in search.log "

Getting rid of Index Clustering

Unable to initialize modular input "jms" defined inside the app "jms_ta"

Why is the LDAP User Default App Not Used in Search Head Cluster and Defaults to Launcher?

Configure Splunk Forwarder only with admin account

Is it possible to limit bucket replication with limits.conf?

After communication issues between cluster nodes getting replication factor not met for search and indexing

Why does my Splunk Cloud 7.0.0.1 instance generate a very high volume of errors "bucket archiving failed"?

Can I specify another location for splunk to look for apps?

Different storage space occupancy within index cluster

Why New Index is disabled by default after creation?

Why is there a failure error when integrating splunk SH cluster with Indexing Cluster?

Multisite Indexer Clustering

What areas to investigate for an overall health check of our distributed Splunk instance?

New HF in 7.01 - how to add to license/deployment server?

Cleaning Indexes not working

Multiple Search Heads - Possible Clustering of Virtual and Physical?

Performance problem OPC UA for Splunk

limit bin entries to 1

How to produce rows for non-existing time buckets?

How will you .conf21? You decide! Go in-person in Las Vegas, 10/18-10/21, or go online with .conf21 Virtual, 10/19-10/20.

Learn More or Register Now >

Whats the safest and easiest way to merge multiple...

Splunk integration with third party systems

Disable forwarding of MS NPS Logging of load balan...

After Upgrade to 8.2.2, "WinEvent -> Defender" log...

Netapp storage to splunk and again splunk to check...

Deployment Architecture

Discussions

How will you .conf21? You decide! Go in-person in Las Vegas, 10/18-10/21, or go online with .conf21 Virtual, 10/19-10/20. Learn More or Register Now >

How will you .conf21? You decide! Go in-person in Las Vegas, 10/18-10/21, or go online with .conf21 Virtual, 10/19-10/20.

Learn More or Register Now >