Monitoring Splunk

Discussions

Thread Info

performance considerations for eventtypes?

I've been looking at the "Search Job Inspector" recently and noticing that command.search.typer is often showing up a...

by Super Champion in

Splunk crashes repeatedly (Cannot open manifest file...)

Splunk started crushing with crash logs enries like this: [build 182037] 2013-11-14 11:02:27 Received fatal signal...

by Builder in

splunkd keeps on crashing (crashing thread: archivereader)

Hey, i am currently experiencing severe problems with my splunk installation since splunkd repeatedly crashes right a...

by Path Finder in

CERN HTTPD Access Control Bypass (Splunkd service)

Vulnerability scanning software returned the following result for a handful of systems in my environment: "There e...

by Engager in

Errors - minimum free disk space - point SPLUNK to new drive

Basic (free) SPLUNK has been set up on our network, gathering the basic syslog from our firewalls. I'm new here and t...

by New Member in

Deletion of event data in a index for performance

Hello, I would like to know if deletion of events which are not required will increase the search performance? They a...

by Champion in

How do I improve loading time of my dashboard with many scheduled searches running to populate it?

(asking this on behalf of another user) I have one issue while creating dashboards in my app. To improve loading t...

by Motivator in

Error Spamming Splunkd.log Error Process_Search

I'm getting the following spammed hundreds of thousands of time in my log splunkd.log file ERROR ProcessDispatched...

by Motivator in

splunkd using too much RAM

I suspect scheduled searches are either the cause or a symptom of the cause of splunkd using in the neighborhood of 1...

by Splunk Employee in

Getting "Timed out waiting for splunkd to start." from 4.2.x

I'm unable to get Splunk 4.2 or 4.2.1 working. The splunkd service starts but then stops almost immediately. Star...

by New Member in

Orphaned Processes blocking Splunkd port

All, We had an issue recently that I was hoping to get some clarification on what exactly was happening. I have an...

by Contributor in

Failures after Upgrading to 6.0

We upgraded to 6.0 yesterday. Since then, randomly, we see this: [build 182037] 2013-11-26 15:01:46 Acces...

by Motivator in

splunkweb reporting splunkd timeout

Hello, I am currently running into problems with my Search Heads. Users are experiencing intermittent timeouts of ...

by Champion in

Splunk query to measure REST API response time..

Is there a query to measure the response time that Splunk takes to return results from REST API call? The information...

by Motivator in

[Performance] Fastest way to get a list of all values for a field

Hi. I use a lot of SearchSelectLister modules in my dashboard. Users select values to refine a search. For example th...

by Communicator in

Search Head severe performance issue

Hi, we are experiencing severe performance problems with a search head and could not really find a cause for this....

by Path Finder in

My splunkd crashing very frequently

Hi, My splunk is crashing every few days. Below are the error logs that I see. Has anyone experienced this issue befo...

by Path Finder in

Splunk 6 splunkd messages in search

Hi I've just deployed Splunk 6 via the Chef cookbook on-line and I'm noticing some differences from Splunk 5. There a...

by Explorer in

frozenTimePeriodInSecs and indexer disk space

In indexes.conf on the indexer I have my frozenTimePeriodInSecs set to 15552000 = 180 days on indexes that I knew wou...

by Path Finder in

Splunk CPU Usage Spike after upgrade to 5.0.1

I upgraded from 4.3.1 to 5.0.1. After starting splunk, it runs fine for a few minutes but then the CPU usage increase...

by Engager in

Monitoring Splunk

Discussions

performance considerations for eventtypes?

Splunk crashes repeatedly (Cannot open manifest file...)

splunkd keeps on crashing (crashing thread: archivereader)

CERN HTTPD Access Control Bypass (Splunkd service)

Errors - minimum free disk space - point SPLUNK to new drive

Deletion of event data in a index for performance

How do I improve loading time of my dashboard with many scheduled searches running to populate it?

Error Spamming Splunkd.log Error Process_Search

splunkd using too much RAM

Getting "Timed out waiting for splunkd to start." from 4.2.x

Orphaned Processes blocking Splunkd port

Failures after Upgrading to 6.0

splunkweb reporting splunkd timeout

Splunk query to measure REST API response time..

[Performance] Fastest way to get a list of all values for a field

Search Head severe performance issue

My splunkd crashing very frequently

Splunk 6 splunkd messages in search

frozenTimePeriodInSecs and indexer disk space

Splunk CPU Usage Spike after upgrade to 5.0.1

Don't miss your chance
to share your Splunk
wisdom in-person or
virtually at .conf21!

Call for Speakers has
been extended through
Thursday, 5/20!

Submit Now! >

Received metadata string exceeding maxLength

I can not access Splunk server. I get "untitled" o...

Indexer Queues are full

Splunk endpoint monitoring without spamming events

How do I increase the number of lines per reports ...

Monitoring Splunk

Discussions

Don't miss your chance to share your Splunk wisdom in-person or virtually at .conf21!Call for Speakers hasbeen extended throughThursday, 5/20! Submit Now! >

Don't miss your chance
to share your Splunk
wisdom in-person or
virtually at .conf21!

Call for Speakers has
been extended through
Thursday, 5/20!

Submit Now! >