Getting Data In

Why is one of our Linux Splunk 6.x forwarders reporting "Detected system time adjusted backwards..."?

splunkben
Explorer

One of our Linux hosts running a Splunk 6.x forwarder is getting an excessive number of messages in splunkd.log:

04-28-2016 21:39:18.560 -0400 WARN TimeoutHeap - Detected system time adjusted backwards by 4ms.
04-28-2016 21:39:28.576 -0400 WARN TimeoutHeap - Detected system time adjusted backwards by 3ms.
04-28-2016 21:39:35.581 -0400 WARN TimeoutHeap - Detected system time adjusted backwards by 4ms.
04-28-2016 21:39:39.581 -0400 WARN TimeoutHeap - Detected system time adjusted backwards by 4ms.
04-28-2016 21:39:40.581 -0400 WARN TimeoutHeap - Detected system time adjusted backwards by 4ms.
04-28-2016 21:39:51.617 -0400 WARN TimeoutHeap - Detected system time adjusted backwards by 4ms.
04-28-2016 21:40:30.655 -0400 WARN TimeoutHeap - Detected system time adjusted backwards by 4ms.
04-28-2016 21:40:33.655 -0400 WARN TimeoutHeap - Detected system time adjusted backwards by 4ms.
04-28-2016 21:40:41.691 -0400 WARN TimeoutHeap - Detected system time adjusted backwards by 4ms.

ntp does appear to be running and the clock time looks ok when spot checking. Was wondering what that Splunk forwarder warning means? Does it thinks the system clock time is changing/bouncing around a lot and/or going backwards?

0 Karma

ddrillic
Ultra Champion
0 Karma
Career Survey
First 500 qualified respondents will receive a $20 gift card! Tell us about your professional Splunk journey.

Can’t make it to .conf25? Join us online!

Get Updates on the Splunk Community!

Community Content Calendar, September edition

Welcome to another insightful post from our Community Content Calendar! We're thrilled to continue bringing ...

Splunkbase Unveils New App Listing Management Public Preview

Splunkbase Unveils New App Listing Management Public PreviewWe're thrilled to announce the public preview of ...

Leveraging Automated Threat Analysis Across the Splunk Ecosystem

Are you leveraging automation to its fullest potential in your threat detection strategy?Our upcoming Security ...