Monitoring Splunk

Discussions

Thread Info

If I wanted to continuesly monitor HTTP get request to a particular web server, how would I go about doing this?

So from what I know, I would have to add data to splunk. I know where to go to do this, but I am not sure what to put...

by New Member in

Persisting the health of a server using the events fired from windows event logs or some other monitoring tool

Hi Experts, We have a search which checks for critical windows event logs on a windows box which decide the health...

by Contributor in

AWS ECS Logs in Splunk

Hello Folks, I am trying to send logs from ECS to Splunk and I have followed everything in this blog https://www.s...

by New Member in

Splunk Windows directory monitoring results in 30x "logfile size" to "data indexed" volume

Summary For monitoring Windows directories, Splunk is reporting roughly 30 times the index volume versus the actua...

by Engager in

Why is my Splunk instance not starting and crashing with crash logs?

My splunk instance keeps on crashing it's not even starting. Whenever "splunk start" is entered it creates crash logs...

by Splunk Employee in

not monitored similer name local files on windows

My logs files are having named as "xxxx*.log.2018-06-27, xxxx*.log.2018-06-26, xxxx*.log.2018....." it differntiate w...

by Contributor in

Why am I getting an error while creating a new app "ERROR SearchPhaseGenerator :Fallback to two phase search failed:Error in 'script'"?

I have created a basic helloworld app but it is giving error Please see below the log 07-31-2018 03:36:25.484 ...

by Explorer in

Lexmark Event Logging Message Reference

Hi, i am currently looking for a Lexmark Event Logging Message Reference as i am currently working on Live Logging fr...

by New Member in

Monitor splunk file after restart

On the Splunk docs it is given as How Splunk Enterprise handles monitoring of files during restarts When the Splu...

by Contributor in

Windows DHCP log files "too small to match seekptr checksum"?

I'm seeing "seekptr checksum" errors for all the Microsoft's DHCP log files. Here's an example: ERROR TailingProce...

by Path Finder in

License/Indexing question

If we are licensed for 200 GB a day and we send 100 GB of raw data. Is it how much we send Splunk or how much we inde...

by New Member in

Citrix XenDesktop app spiking CPU usage

Hello, I'm having issues with my Citrix XenDesktop7 app and TA. The forwarder (7.02, same as my enterprise splunk) do...

by Path Finder in

Multiple Domain Usage Stats Count

Hey there! I have three broad domains (many IPs associated). gotomeeting.com webex.com zoom.us I want to get th...

by New Member in

Inputs.conf - use a variable

Hello all. I have a bunch of *nix machines which all mount the same shared file server location to write their logs (...

by Explorer in

Unable to sink logs on splunkweb

I am trying to sink logs on splunkweb from a Linux server, I added monitor@path of logs but cant sink. Any suggest...

by Explorer in

Why does my Splunk server keep crashing?

-bash-4.1$ cat crash-2018-05-21-09:41:12.log [build fa31da744b51] 2018-05-21 09:41:12 Received fatal signal 6 (Aborte...

by Engager in

Using Inputlookup to check if the server is reachable or not.

I have a search which checks if the server is not sending the data within 5 minutes of time. Also i have a list of se...

by Contributor in

Sharepoint Site Login and Content Monitor

How could I setup to login to Sharepoint site and monitor elements on the page such as using Website Monitor Plugin s...

by Engager in

What are the measures to check Splunk performance issue.

Hi Splunkers, Good Day! We have a multisite distributive environment in which we are experiencing performance i...

by Explorer in

Does anyone know the base recommended amount of disk space for Splunk Enterprise exclusive of indexed data?

Hello, My server operations team is standing up a set of Splunk servers for me to set up a distributed Splunk depl...

by Path Finder in

VMWare virtual machines health shows no data

2018-07-20 12:08:27,470 ERROR [ta_vmware_collection_worker://epsilon:4348] 'Text' object has no attribute 'ManagedObj...

by New Member in

Temporary Memory

Hi, Is there an easy way to have a "temporary memory" that stores some variables when a query runs, and after each...

by Explorer in

7.0.xと7.1.xでメモリーが定期的に消費されているように見受けられますが、なぜでしょうか？

従来のバージョンと比べて、7.0.xや7.1.xではメモリーが定期的に消費されているように見受けられます。なぜでしょうか？

by Splunk Employee in

How to go back to standalone mode after enabling DMC in distributed mode?

I have enabled DMC in distributed mode is there a way I can come back to standalone mode. What I did is I have sel...

by New Member in

How to calculate the free disk capacity in MB?

hello I use this code `in order to calculate the free disk space but I also need to know the capacity disk in MB. ...

by Motivator in

Get Updates on the Splunk Community!

Monitoring Splunk

Discussions

If I wanted to continuesly monitor HTTP get request to a particular web server, how would I go about doing this?

Persisting the health of a server using the events fired from windows event logs or some other monitoring tool

AWS ECS Logs in Splunk

Splunk Windows directory monitoring results in 30x "logfile size" to "data indexed" volume

Why is my Splunk instance not starting and crashing with crash logs?

not monitored similer name local files on windows

Why am I getting an error while creating a new app "ERROR SearchPhaseGenerator :Fallback to two phase search failed:Error in 'script'"?

Lexmark Event Logging Message Reference

Monitor splunk file after restart

Windows DHCP log files "too small to match seekptr checksum"?

License/Indexing question

Citrix XenDesktop app spiking CPU usage

Multiple Domain Usage Stats Count

Inputs.conf - use a variable

Unable to sink logs on splunkweb

Why does my Splunk server keep crashing?

Using Inputlookup to check if the server is reachable or not.

Sharepoint Site Login and Content Monitor

What are the measures to check Splunk performance issue.

Does anyone know the base recommended amount of disk space for Splunk Enterprise exclusive of indexed data?

VMWare virtual machines health shows no data

Temporary Memory

7.0.xと7.1.xでメモリーが定期的に消費されているように見受けられますが、なぜでしょうか？

How to go back to standalone mode after enabling DMC in distributed mode?

How to calculate the free disk capacity in MB?

Automatic Discovery Part 1: What is Automatic Discovery in Splunk Observability Cloud ...

Real-Time Fraud Detection: How Splunk Dashboards Protect Financial Institutions

Splunk + ThousandEyes: Correlate frontend, app, and network data to troubleshoot ...

alert action email with empty attachment

MSSP reporting

Splunk UBA

Talos Cisco IoCs Splunk ES

Problems with SA-Hydra

Monitoring Splunk

Are you a member of the Splunk Community?

Discussions