Monitoring Splunk

Community Activity

Storage issues on indexer Is it normal to have colddb > db?4.0K thaweddb20M summary4.2G datamodel_summary9.8G db59G colddb[ro... by Reethika Path Finder in Monitoring Splunk 06-22-2020 0 1	0	1
Universal Forwarder audit logs not going to Splunk Cloud Hi, I'm having an issue where my Splunk audit.log from the UF is not being forwarded to my Splunk Cloud instance. My... by apiprek2 Explorer in Monitoring Splunk 06-21-2020 0 1	0	1
フォワーダー管理のクライアントの追加方法についてお世話になります。標題について質問させてください。デプロイサーバ(Splunk Enterprize7.3.3 windows64bit)からデプロイクライアント(Universal Forwarder7.3.3 window... by satoishi New Member in Monitoring Splunk 06-18-2020 0 4	0	4
Can we be alerted when a field extraction fails because of depth_limit ? Hello everyone,We have configured some automatic field extractions using regular expressions on some logs that can ge... by performancemoni Path Finder in Monitoring Splunk 06-18-2020 0 0	0	0
Splunk server crush We had our Splunk server stopping by itself two days in a row.I am trying to find the reason but I cannot find anythi... by sbarinov Path Finder in Monitoring Splunk 06-18-2020 0 1	0	1
F5 analytics not in splunk Hi All,I have setup F5 iApp to push analytics data to Splunk and could see splunk accepting data from tcp dumps on F5... by panduu New Member in Monitoring Splunk 06-13-2020 0 1	0	1
KVStore Process Terminated Splunk installed on windows server, getting the following errors in web UI: KV Store process terminated abnormally (... by splunkuser145 New Member in Monitoring Splunk 06-12-2020 0 0	0	0
How to free space on /opt/splunkcolddata ? Hi,Please suggest me,Methods for freeing some space on /opt/splunkcolddata on indexer. how to reduce the retention da... by Reethika Path Finder in Monitoring Splunk 06-12-2020 0 1	0	1
How to make my computer (with splunk) receive data from another computer on the same network in real time? I'm trying to receive all the behaviour from a computer in real time, and receive the data in my other computer that ... by Alepy Explorer in Monitoring Splunk 06-12-2020 0 7	0	7
Add sourcetype to DNS and Netflow License We have a license for only DNS and Netflow data sources. Is their a way to edit the license to allow additional sourc... by ajinaqvi New Member in Monitoring Splunk 06-12-2020 0 1	0	1
AWS Missing feeds Hi All,I am in the process of creating an app for AWS sources and one of the objectives is to alert when an account s... by realtimetechnol Explorer in Monitoring Splunk 06-11-2020 0 1	0	1
How to setup DMC through CLI? Is it possible to setup the DMC to distrubuted mode through the CLI? How could this be achieved? by roukepouw Explorer in Monitoring Splunk 06-04-2020 3 4	3	4
How to resolve error when Splunkd intermittently crashes while streaming telemetry data on Universal Forwarder: "ProcessRunner: No such file or directory"? Hello! I’m working on streaming telemetry data to Splunk. I use Splunk Universal Forwarder v7 x86_64 to capture and s... by prajnaamey Engager in Monitoring Splunk 06-03-2020 0 2	0	2
Authentication error when trying to configure Splunk with Azure AD for SAML: "Your network connection may have been lost or Splunk may be down.” Hi Team, We are trying to integrate Splunk with Azure AD for SAML authentication. However, whenever we try to uploa... by jaracan Communicator in Monitoring Splunk 06-02-2020 0 1	0	1
how can we get Splunk license % usage data over long period of time? (>60 days) how can we get Splunk license % usage data over long period of time? The following query only gives us last 2 months ... by sdintino_splunk Splunk Employee in Monitoring Splunk 06-02-2020 0 3	0	3
Has anyone seen this Error message: Monotonic time source didn't increase; is it stuck? Since we've upgraded to 7.0 we're seeing this particular error show up in the logs: 10-17-2017 11:30:30.772 -0600 ER... by tywhite Explorer in Monitoring Splunk 06-01-2020 15 6	15	6
UF restarts due to TcpOutputProc issue Hi - having issues with a Windows UF we are having to restart circa weekly to clear the issue below which happens at ... by nickhaj New Member in Monitoring Splunk 05-28-2020 0 3	0	3
Splunk Crashing with ExceptionCode: c0000005 (Access violation) I'm seeing Splunk Enterprise Version 8.0.2 Build a7f645ddaf91 running Windows Server 2019, build 17763.1217.Individua... by dusitnd New Member in Monitoring Splunk 05-26-2020 0 1	0	1
How to expand disk space on indexer in Azure Hi guys , I want to expand disk space for indexer hosted on Azure as VM and its an indexer cluster which completely o... by abhinav_bel Loves-to-Learn Lots in Monitoring Splunk 05-26-2020 0 0	0	0
How to get to know peer down time with SPL? Hi Guru! (I edited) I have indexer cluster and one search head. I do not use monitoring console. One of peer nodes ha... by brandy81 Path Finder in Monitoring Splunk 05-26-2020 0 3	0	3
Is AutoCAD device can be monitored via Splunk ? Hi All, Today I had a question from my customer, that he wants to monitor the bunch of software running in his envir... by Hemnaath Motivator in Monitoring Splunk 05-25-2020 0 1	0	1
How can I generate a search which uses lots of memory? We are about to enable the enable_memory_tracker feature. We'll use - enable_memory_tracker = true search_process_me... by danielbb Motivator in Monitoring Splunk 05-24-2020 0 4	0	4
tstats command consumes a lot of IO and runs for 20 minutes I'm running this query to get average event counts per day by index. When I run this, each site does an aggregate 2.5... by jarush Explorer in Monitoring Splunk 05-24-2020 0 6	0	6
Incorrect Path to Script, but Path doesn't exist I'm trying to bring in new data to my Splunk standalone and getting this error in the _internal logs Incorrect path t... by wwhite12 Path Finder in Monitoring Splunk 05-22-2020 0 3	0	3
How do I find Splunk Cloud configuration change events? With multiple admins in our Splunk Cloud, we'd like to see any changes made that have a global or app wide impact. E... by lindonmorris Explorer in Monitoring Splunk 05-20-2020 0 0	0	0