Monitoring Splunk

Community Activity

Splunk 6.6.1 stops monitoring files Recently updating from 6.5.3 to 6.6.1, I started running into a situation where at least one of my Heavy Forwarders w... by craigkleen Communicator in Monitoring Splunk 01-25-2019 4 9	4	9
How to get list of users not logged in for more than 30 days in DC Hi All, I am trying to create a list of users who have not logged in Domain Controller for more than 30 days. Any s... by spodda01da Path Finder in Monitoring Splunk 01-25-2019 0 10	0	10
500 Internal Server Error I can access the login page, but when I put Userid and Password and click login, the attachement file displays. Splu... by htomo12 New Member in Monitoring Splunk 01-24-2019 0 17	0	17
Splunk reports wrong cpu count Hi, We are running Splunk on RedHat 7.x VMs and originally the VMs had 2 cpus with 2 cores each. In DMC and in REST ... by vanvan Path Finder in Monitoring Splunk 01-24-2019 1 1	1	1
SOLVED - Error Banner Message exit_code=255 btool command Search process did not exit cleanly, exit_code=255, description="exited with code 255". Please look in search.log for... by bleung93 Path Finder in Monitoring Splunk 01-24-2019 1 5	1	5
Isilon FS Audit Logs Shows No User - Searching Index Shows SID I'm having a challenge with the EMC Isilon Splunk App and Add-on that is reporting the SID information but not transl... by travismartinez New Member in Monitoring Splunk 01-23-2019 0 0	0	0
Splunk not picking up all the files from the folder it is Monitoring I am using Splunk 7.0.1, Trial Version. I have a folder that consists of JSON records. These JSON records are create... by raja21 Explorer in Monitoring Splunk 01-23-2019 0 3	0	3
Include only certain codes. Hi all, I have a search like this: (index=* OR index=_) (source="WMI:WinEventLog:Security" OR source="WinEventLog:S... by bogdan_nicolesc Communicator in Monitoring Splunk 01-23-2019 0 2	0	2
mongod exited abnormally (exit code 1, status: exited with code 1) - look at mo ERROR: Failed to fix non-voting members Priority value during mongod version miReason: ERROR while running mongod-fix-voting-priority migration. mongod exited abnormally (exit code 1, status: exited with code 1) - look at mo ERROR: Failed to fix non-voting membe... by srampally Path Finder in Monitoring Splunk 01-21-2019 0 2	0	2
Splunk SDK via proxy Hello.. We have trouble connecting to Splunk using splunk sdk for java. Our network should go through proxy. and it i... by MaheshPalemkota New Member in Monitoring Splunk 01-17-2019 0 2	0	2
host in metadata but has no logs I have a search that starts off with \| metadata type=hosts .... The problem is that the results are pulling back ... by reswob4 Builder in Monitoring Splunk 01-17-2019 0 2	0	2
Can you help me with some questions I have about the metrics.log and _internal index? In system/default/inputs.conf, I see a stanza like this ... [monitor://$SPLUNK_HOME/var/log/splunk] I don't see a ... by dstuder Communicator in Monitoring Splunk 01-16-2019 1 5	1	5
Updated server.conf cert, fixed 8088 TLS, but broke web gui We needed to install a vendor signed cert so that we could stream info to Splunk into a HTTP Event Collector. So ... by jwhitene New Member in Monitoring Splunk 01-11-2019 0 5	0	5
Why does our Monitoring Console (Resource Usage: Instance) disk capacity does not match reality? One of the Splunk partitions had its volume disk capacity increased, but in the monitoring console, it keeps showing ... by alonsocaio Contributor in Monitoring Splunk 01-10-2019 1 1	1	1
Parameters and variables in dbxlookup DB Connect (v3.1.3) Hi, I have a problem how to pass parameters (variables) to dbxlookup (v3.1.3). I need pass variable VAR from Splunk ... by dgelo Explorer in Monitoring Splunk 01-10-2019 1 3	1	3
inputlookup searches How to use a inputlook to run several different indexes depending on which option the user selects on the drop down a... by Eshaac Engager in Monitoring Splunk 01-08-2019 0 2	0	2
Splunkからsyslogサーバへの転送設定について SplunkからSyslogサーバへのログの転送を検討しています。 Forwarderから受け取ったデータをIndexに格納しつつ、特定ソースタイプのみIndexerからSyslogサーバへ転送したいです。有効な設定方法を教えてく... by TAMURA1990 Explorer in Monitoring Splunk 01-07-2019 0 4	0	4
Are ad-hoc Splunk searches multi threaded? In simple words, if I execute an ad-hoc search on a Splunk environment that has multiple CPU cores across indexer clu... by ppuru Path Finder in Monitoring Splunk 01-07-2019 0 2	0	2
jquery context menu in dashboard Hi, I am trying to use a jquery plugin ( https://github.com/swisnl/jQuery-contextMenu ) to create a custom context m... by josephkverghese Engager in Monitoring Splunk 01-07-2019 0 2	0	2
How do you create a correlation rule for intrusion prevention sytem deviations? I currently have two different IDS/IPS systems that are sending data to Splunk. These sensors are spread out across m... by ericl42 Path Finder in Monitoring Splunk 01-07-2019 0 3	0	3
Feature request: fsck repair indexes performance Hi, I think more than me experience repairing corrupted indexes take long time. At least in my environment with a si... by ToreEnger Explorer in Monitoring Splunk 01-02-2019 4 9	4	9
monitored drafted mail We are using Zimbra as our private mail server. We are monitoring the logs of this server. How can I see if someone h... by praneshjan Explorer in Monitoring Splunk 01-01-2019 0 1	0	1
Unable to get the perfmon logs from Windows Universal Forwarder I am using universal forwarder and unable to get the metrics to the Splunk dashboard. we need some help in fixing t... by khusain_splunk Splunk Employee in Monitoring Splunk 12-28-2018 0 1	0	1
What could be the reason for a spike in CPU Usage in some indexers in a clustered environment? Hi, I have a clustered environment and it runs smoothly, but sometimes, I see a spike in CPU Usage in some of the in... by nawazns5038 Builder in Monitoring Splunk 12-28-2018 0 2	0	2
Can you help us with a Splunk Root user Issue? Hi Splunkers, Last week, one of our search head went down and we tried to restart the server. We have done some tro... by rohitvjoshi Path Finder in Monitoring Splunk 12-28-2018 0 1	0	1