Solved: Re: Cold to frozen script, simply moving to thawed...

tedder · ‎11-19-2010

I want to use the coldToFrozenScript to simply move from cold to my thawed path. Great, my shell script simply contains the following: mv -r "$1" /mnt/thawed/

However, if I use this for multiple indexes, I need to move it to the path for the index: /mnt/thawed/indexname/

How can I genericize this? I mean, I can set an argument, but can I detect the index or the thawedPath easily?

dwaddle · ‎11-19-2010

If you know the index name, say via an argument, then you can ask btool to tell you the thawed path, similar to:

$ splunk cmd btool indexes list main | grep thawedPath
thawedPath = $SPLUNK_DB/defaultdb/thaweddb

BEWARE, btool may not be officially supported right now, or ever.

View solution in original post

jarjoh42 · ‎01-24-2018

Ha-zaw
A Powershell Script for windows users to thaw multiple buckets.

Set-ExecutionPolicy -ExecutionPolicy Bypass


$Date =  get-date -Format yyyyMMdd


Foreach ($SplunkDBs in Get-ChildItem "D:\Splunk_Indexes\indexA\thaweddb")

    {
         & "c:\Program Files\splunk\bin\splunk.exe" rebuild D:\Splunk_Indexes\indexA\thaweddb\$SplunkDBs


    }

lpolo · ‎09-07-2011

You can use the search command "dbinspect". For example:
|dbinspect index=main

Cheers,
Lp

dwaddle · ‎11-19-2010

If you know the index name, say via an argument, then you can ask btool to tell you the thawed path, similar to:

$ splunk cmd btool indexes list main | grep thawedPath
thawedPath = $SPLUNK_DB/defaultdb/thaweddb

BEWARE, btool may not be officially supported right now, or ever.

Cold to frozen script, simply moving to thawed folder- how to genericize?

Extending Observability Content to Splunk Cloud

More Control Over Your Monitoring Costs with Archived Metrics!

New in Observability Cloud - Explicit Bucket Histograms