Monitoring Splunk
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Splunk server crush

sbarinov
Path Finder
‎06-18-2020 01:44 AM

We had our Splunk server stopping by itself two days in a row.

I am trying to find the reason but I cannot find anything related in /opt/splunk/var/log/splunk.

Could someone please advise where I should be looking for the related logs?

Labels (2)
Labels
0 Karma
Reply

sbarinov
Path Finder
‎06-18-2020 01:55 AM

As it was found, there was a kernel out of memory error.

We are running Version:7.2.5 on 12GB RAM.

I am wondering what we can do about that.

I will try to limit the amount of records in alert searches since we have them running all the time.

0 Karma
Reply
Get Updates on the Splunk Community!

Customer Experience | Join the Customer Advisory Board!

Are you ready to take your Splunk journey to the next level? 🚀 We invite you to join our elite squad ...

Observability Cloud | AWS PrivateLink Enabled for Splunk Observability Cloud

We’ve enabled AWS PrivateLink for Observability Cloud, giving you an additional inbound connection to send ...

Index This | A sphere has three, a circle has two, and a point has zero. What is it?

September 2023 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...