Monitoring Splunk

Community Activity

How to clear orphan scheduled searches that you cannot find, anywhere? Hi,I have an annoying alert that is firing whenever 2 orphaned searches run on their cron schedule.I have reassigned ... by Glasses2 Communicator in Monitoring Splunk 12-21-2022 0 1	0	1
How can I disable this error: The minimum free disk space (5000MB) reached for /opt/splunk/var/run/splunk/dispatch. Hi, Is there any current instructions on how to disable this error message that I keep receiving. Where can I edit th... by OgoSplunk Path Finder in Monitoring Splunk 12-20-2022 0 1	0	1
TrackMe - insert hosts into trackme_host_monitoring? Can anyone offer any guidance on what fields would be considered 'required' for inserting a record into the TrackMe '... by jbuxton Explorer in Monitoring Splunk 12-20-2022 0 0	0	0
Why is my indexer randomly crashing? Hello everyone, currently our Indexers keep crashing randomly. We're only running Linux OS, within Splunk 9.0.2. Any... by brennson90 Path Finder in Monitoring Splunk 12-20-2022 0 4	0	4
What is counted to user's disk usage quota Hi all, trying to understand what contributes to this quota: 1. If a user share an adhoc search result through the Sh... by Motoko89 Path Finder in Monitoring Splunk 12-16-2022 2 1	2	1
Could not load lookup=LOOKUP-itsi_kpi_attributes? so it says Could not load lookup=LOOKUP-itsi_kpi_attributes looking around find there are pointers i think. but ... by domino30 Path Finder in Monitoring Splunk 12-15-2022 0 1	0	1
How can I see why our license usage went up? Hello!Last week (12/8/2022) my license usage went through the roof, for one source type that used 24 GB. On the other... by ichesla1111 Path Finder in Monitoring Splunk 12-15-2022 0 3	0	3
Indexers BatchAdding problem Hi Splunkers.I have an indexer cluster and all of sudden all of them goes up and down and stuck in BatchAdding status... by m_zandinia Path Finder in Monitoring Splunk 12-15-2022 0 2	0	2
Are there any sample logs for SalesForce and Cisco Secure Email? Good day, I am working on a Splunk project, end to end from log ingestion to creating searcheads and dashboards. I ne... by kambizzle09 Observer in Monitoring Splunk 12-14-2022 0 0	0	0
How to do loop on array? How to loop the array values after split with delimiter \| eval json="{"key1":"key1value","key2":"key2value","key3":"... by bhanusaketi Loves-to-Learn in Monitoring Splunk 12-13-2022 0 1	0	1
How important are the TCPOutAutoLB Health Warnings? Hi,I have seen yellow and red health warnings for TCPOutAutoLB-0 for sometime. We identified a few issues like a HF ... by Glasses2 Communicator in Monitoring Splunk 12-13-2022 0 0	0	0
How to calculate size of index via REST API? I need to calculate the size of a clustered index, and I used this API for it:/services/cluster/manager/indexes (http... by Commvault Observer in Monitoring Splunk 12-12-2022 0 0	0	0
How to find how much storage is used from logs? I have a index which would return logs. I would like to know how much storage is used for logs in a specific time ran... by xwang333 Engager in Monitoring Splunk 12-01-2022 0 1	0	1
How to filter out errors that occur at consecutive intervals? This query returns the url with errors at 5m span, I just want to filter out those errors that occur at consecutive i... by sid_arora New Member in Monitoring Splunk 12-01-2022 0 1	0	1
How to whitelist or blacklist a files inside .zip file in Splunk monitoring Hi Friends,My current situation is: I'm monitoring the files from this path: source="/opt/redprairie/prod/prodwms/l... by Jagadeesh2022 Path Finder in Monitoring Splunk 11-27-2022 0 4	0	4
Which index should we query for Pagerduty call response code? We have alerts routed to Pagerduty from Splunk. We are debugging whether alerts got routed to Pagerduty. Which index ... by sunilsunderraj Engager in Monitoring Splunk 11-24-2022 0 0	0	0
dashboard to check _internal log status from all my splunk servers for every 5mins Hi , I wanted to dashboard to monitor my complete splunk environment . I want to monitor _internal index every 5mins ... by deepthi5 Path Finder in Monitoring Splunk 11-24-2022 0 1	0	1
Edit All Matching Notable Events - Can we undo this? Hello folks!That is my first post here and I hope you guys help me with my issue.I have inadvertently selected 4000+ ... by DanAlexander Communicator in Monitoring Splunk 11-07-2022 0 1	0	1
Monitoring log sources that go silent? Hi team. I'm looking for a query/solution that will alert me when a log source is no longer sending logs. For example... by dionrivera Communicator in Monitoring Splunk 11-06-2022 0 5	0	5
Anyone have a search that will return the indexed events per second across the entire indexer cluster? Anyone have a search that will return the indexed events per second across the entire indexer cluster? by nnesje Loves-to-Learn Lots in Monitoring Splunk 11-04-2022 0 2	0	2
Search to return cluster ingest rate (KB/s) I'm looking for a search I can run that will return the ingest rate (KB/s) across the entire cluster. I know there's... by nnesje Loves-to-Learn Lots in Monitoring Splunk 11-04-2022 0 4	0	4
How do I validate that boot-start was indeed enabled? As the Splunk farm grows we end up with servers for which the boot-start was not enabled and for heaven’s sake, splun... by ddrillic Ultra Champion in Monitoring Splunk 11-04-2022 0 4	0	4
How can I resolve clean-dispatch issues- Can't search, and dashboards are non functional? Received error this morning on one of our non-distributed search head: The minimum free disk space (5000MB) reached f... by HathMH Path Finder in Monitoring Splunk 11-02-2022 0 0	0	0
Indexing Sharepoint mounted path in Splunk? I am able to index my local C:/ drive local files in Splunk , but unable to index X:/ drive (Sharepoint path) folder ... by PraveenaR Explorer in Monitoring Splunk 11-01-2022 0 6	0	6
data.elapsed duration for scheduled searches + multiple instances of search- How do i read the results? I am investigating higher CPU usage on my indexers, and am finding that this is a hard topic to really pinpoint. I ru... by oliverja Path Finder in Monitoring Splunk 11-01-2022 0 0	0	0