Monitoring Splunk

Community Activity

How can I monitor a filepath effectively? I have been attempting to add a file path in data inputs as well as in the inputs.conf file as a "monitor". Each tim... by kymenope Explorer in Monitoring Splunk 07-07-2023 0 3	0	3
Can we restore data from one single host? Hi Is it possible to restore archive data from one single host consider we have an index=windows ,we want to restore... by arunkuriakose Explorer in Monitoring Splunk 07-06-2023 0 2	0	2
Monitor Console for SmartStore not clear From Monitoring Console > Indexing > SmartStore > SmartStore Cache Performance: Deployment, we can see Max Cache Size... by louismai Path Finder in Monitoring Splunk 07-04-2023 0 1	0	1
FortiGate Firewall is consuming the license Dears,After the forward of the logs from FortiGate toward SPLUNK we noticed that the license is being consumed recent... by ornaldo Path Finder in Monitoring Splunk 07-03-2023 0 8	0	8
Processing queues blocking when thruput/event volume decreases Hi guys,I am currently seeing that processing queues on one of my heavy forwarders appear to be blocking during a 6 h... by cwhelan Explorer in Monitoring Splunk 06-30-2023 0 3	0	3
Why am I receiving browser issues with dashboard modification? With browsers like Google Chrome and Microsoft Edge, we are experiencing problems.We have observed that Splunk dashbo... by cbiraris Path Finder in Monitoring Splunk 06-28-2023 1 4	1	4
Why can't we launch an Indexer Health RapidDiag? Hi, I recently upgraded to Splunk 8.2.2.1, when I try to collect a RapidDiag report in Settings > RapidDiag > Indexer... by kvnpichon Path Finder in Monitoring Splunk 06-26-2023 0 1	0	1
Troubleshooting High Storage I/O Saturation Spikes? We are periodically seeing spikes of Storage I/O Saturation (Monitoring Console > Resource Usage: Deployment). When ... by tretrigh Path Finder in Monitoring Splunk 06-23-2023 0 3	0	3
What does everyone check for "daily morning" Splunk checks? What does everyone check for "daily morning" Splunk checks? by Unknown1 Observer in Monitoring Splunk 06-20-2023 0 1	0	1
Why is the splunkd process is consuming 100% swap memory, and what makes the splunkd process get killed so frequently? We have two heavy forwarder/syslog instances running in the same server. HF is used to forward the data (syslog) to t... by Hemnaath Motivator in Monitoring Splunk 06-13-2023 1 6	1	6
How to tune index retention? Hello, as far as I can understand and please correct me if I am wrong. How an index behaves is based on it’s conf. We... by andynewsoncap Engager in Monitoring Splunk 06-12-2023 0 7	0	7
How does one restart just the KV Store process on a Windows system? Using Splunk Enterprise for Windows, v8.2.10 When the KV Store process terminates abnormally, the "Health Status of S... by NK Path Finder in Monitoring Splunk 06-12-2023 0 0	0	0
Data Age / Frozen Age (days): How to delete the data older than frozen time? Hi Splunk Teamin splunk monitor consonle i see that Data Age vs Frozen Age (days) like this: 1996/450as per my unders... by vumanhtai Path Finder in Monitoring Splunk 06-08-2023 0 6	0	6
How to check who deleted the dashboard? Why there is no results when I search index=_internal? by Mkkk Engager in Monitoring Splunk 06-07-2023 0 5	0	5
Do we have splunk alert if ingest across indexes/sourcetypes drops by certain % ? We have around 100 indexes and instead of creating alert for each index/sourcetype if there is drop in % of volume. I... by Vinay New Member in Monitoring Splunk 06-06-2023 0 3	0	3
What is this behavior in Windows 7: splunk list deploy-clients error ospath_fopen? I'm seeing the below behavior in a Windows 7 environment. Any ideas? C:\Program Files\Splunk\bin>.\splunk list deploy... by sjwone Explorer in Monitoring Splunk 06-06-2023 1 4	1	4
How to get rid of web console error? Error in 'rtlitsearch' command: Your Splunk license expired or you have exceeded your license limit too many times. ... by amoljire New Member in Monitoring Splunk 06-01-2023 0 5	0	5
How to get total disk quota usage of a user OR role? Hello all, since we can set the setting "srchDiskQuota" for each role in the authorize.conf I would like to know if t... by claudiaG Engager in Monitoring Splunk 06-01-2023 0 1	0	1
How do I fix this error: Incorrect path to script - Script must be located inside $SPLUNK_HOME\bin\scripts? The splunkd.log on a Windows host shows the following errors: 05-22-2023 15:31:34.452 -0400 ERROR FrameworkUtils [155... by st1 Path Finder in Monitoring Splunk 05-30-2023 0 6	0	6
BIAS logins Usecases- Are any out of the box Splunk features we could run against BIAS logs + Domain controller logs? Hi Splunkers,I recently set up a use case based of BIAS failure logins with a threshold limit of 9 logins per day acc... by revanthammineni Path Finder in Monitoring Splunk 05-29-2023 0 3	0	3
display first column against nth column Hello All, I have a log file which looks like below and I want to display in Time against the segment size(where firs... by janhvi23 Loves-to-Learn in Monitoring Splunk 05-28-2023 0 0	0	0
How to troubleshoot issue with dmc_forwarder_assets.csv? Hi,I receive alerts about : DMC Alert - Missing forwarders : \| inputlookup dmc_forwarder_assets \| search status="mi... by xouu Explorer in Monitoring Splunk 05-25-2023 0 4	0	4
How to fetch details when users exhaust Splunk search quota? Hello All,I need your help to write SPL for fetching details of events that occur when users reach or cross the thres... by Taruchit Contributor in Monitoring Splunk 05-16-2023 0 1	0	1
Can any one help me with regex to fetch value after last "/"? Can any one help me with regex to fetch value after last "/" Thanks by sbhatnagar88 Path Finder in Monitoring Splunk 05-05-2023 0 1	0	1
How to send Envoy proxy access logs on Splunk server? Hello,I have install Splunk Enterprise Server 9.0.4 which Im using for HTTP Event Collector Now I have configured Env... by Asaf New Member in Monitoring Splunk 05-04-2023 0 0	0	0