Getting Data In
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How to remove "missing" forwarders from the Distributed Management Console?

coltwanger
Contributor
‎08-30-2016 03:06 PM

When a server is decommissioned in our environment, it's brought offline, severing the communication with Splunk. The Distributed Management Console, however, reports these forwarders as "missing" and doesn't appear to let up, or clear then from any queue.

I would love to use this feature to accurately identify a forwarder that has stopped sending data for some reason. Is there a way to "remove" the forwarder that's labeled as "missing" when I know that the server has been brought offline? I have something like 250 devices listed as "missing" with no obvious way to clear them.

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

hexx
Splunk Employee
Splunk Employee
‎08-30-2016 03:43 PM

You'll have to regenerate the forwarder asset table with in the setup > forwarder monitoring page - see this documentation page for details.

View solution in original post

Reply
Solved! Jump to solution
Solution

hexx
Splunk Employee
Splunk Employee
‎08-30-2016 03:43 PM

You'll have to regenerate the forwarder asset table with in the setup > forwarder monitoring page - see this documentation page for details.

Reply
Solved! Jump to solution

lakromani
Builder
‎01-02-2019 12:08 AM

This does work, but there should be a way to delete on host instead of removing all en regenerate the list. If you have 1000 servere, then there will be some that would be down for maintenance and they go back online. And there will be server that should be removed permanently. If I then do the regenerate, I remove all server that is not online, not just the one I like to remove.

Reply
Solved! Jump to solution

coltwanger
Contributor
‎08-30-2016 03:48 PM

This helps -- thank you!

0 Karma
Reply
Get Updates on the Splunk Community!

New This Month in Splunk Observability Cloud - Metrics Usage Analytics, Enhanced K8s ...

The latest enhancements across the Splunk Observability portfolio deliver greater flexibility, better data and ...

Alerting Best Practices: How to Create Good Detectors

At their best, detectors and the alerts they trigger notify teams when applications aren’t performing as ...

Discover Powerful New Features in Splunk Cloud Platform: Enhanced Analytics, ...

Hey Splunky people! We are excited to share the latest updates in Splunk Cloud Platform 9.3.2408. In this ...