Monitoring Splunk

Monitoring Splunk
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
Community Activity
vincenp2

splunk monitor console forecasting when cpu or memory will reach 100%

I would like to be able to monitor cpu and memory usage, so that I can identify a trend for the increase in usage, an...
by vincenp2 New Member in Monitoring Splunk 03-16-2018
0 2
0
2
JuhiSaxena

Splunk query for reporting any new alert or dashboard created in splunk

Is there any way to find out if any new alert or dashboard is being created in splunk system?
by JuhiSaxena Explorer in Monitoring Splunk 03-15-2018
0 2
0
2
shedalkar

What roles and Capabilities needs to assign in order to access the monitoring console with minimal rights ?

Hello, in our environment we have monitoring instance install on separate server, and want to provide the read only...
by shedalkar Engager in Monitoring Splunk 03-14-2018
0 2
0
2
johnward4

Multisearch to display Average % CPU Used by Process by Hosts for both linux and windows servers

I've trying to create a multisearch that displays the Average % CPU Used by Process by Hosts for both Linux and Windo...
by johnward4 Communicator in Monitoring Splunk 03-12-2018
0 1
0
1
daniel333

Indexers Crashing from low memory, any way to prevent his?

All, My CentOS7 indexers in a cluster are crashing prety regularly now. /var/log/messages shows OOM errors and I ca...
by daniel333 Builder in Monitoring Splunk 03-11-2018
0 1
0
1
iamjvn

Clarify where pass4symmkey is used to authenticate client connections

In the search heads clustering and indexer clustering, the language is such that it sounds like pass4symmkey is used ...
by iamjvn Explorer in Monitoring Splunk 03-09-2018
1 2
1
2
David

How to Know What Buckets Are Searched (hot/warm/cold)

I'm trying to analyze the effectiveness of our bucketing strategy, to ensure that we're making optimal use of hot/war...
by David Splunk Employee Splunk Employee in Monitoring Splunk 03-09-2018
5 7
5
7
raomu

lookup table field update

Hello, I have a lookup with 3 fields "Hostname" "IP" "Status" ( Status is by default set with the value "Non-Active...
by raomu Explorer in Monitoring Splunk 03-09-2018
0 1
0
1
robertlynch2020

How can i improve Performance of tstats

Hi I have the following queary using Tstats .. The issues is it take 22 seconds and i need 10. In general i am lo...
by robertlynch2020 Influencer in Monitoring Splunk 03-02-2018
0 5
0
5
ivan128

How to Calculate Risks score by assigning a risk score that also uses the total amount of scanned hosts and how many are are vulnerable from Nessus results?

Hello, I'm quite new to splunk, and probably this can be done more efficiently. I have a search that uses Nessus rep...
by ivan128 Explorer in Monitoring Splunk 02-28-2018
0 0
0
0
meghasingh

Performance Monitoring CPU Usage, Memory Utilization monitoring from 3 different servers

Hi All, We are very new to Splunk. Our project is trying to achieve the following: Could you please shed some light ...
by meghasingh Engager in Monitoring Splunk 02-27-2018
0 1
0
1
kaushik1218

I am trying to predict CPU utilization in Unix host. Can someone please help me in getting parameters that will affect CPU Utilization

Require the parameters that will affect CPU. So that the prediction can be more effective.
by kaushik1218 New Member in Monitoring Splunk 02-25-2018
0 1
0
1
daniel333

Is there a way to limit user memory usage?

All, I have a user who's job used 6+gigs of ram. Is there a way for me to cap their memory usage? If so how does th...
by daniel333 Builder in Monitoring Splunk 02-22-2018
0 1
0
1
Splunk0n

Suricata logs converted from unified2 to json for Splunk

Hello Splunkers and @niemesrw - I am trying to get my Suricata logs converted from unified2 to json for Splunk. I saw...
by Splunk0n New Member in Monitoring Splunk 02-22-2018
0 0
0
0
alexandercouto

Does Splunk recommend 1200 IOPS or 1200 Random Seeks per second?

Hello everybody. I think there's a misunderstanding of bonnie++ does. I looked for other entries here in the forum a...
by alexandercouto Engager in Monitoring Splunk 02-21-2018
6 4
6
4
Chris_R_

What are the merged_lexicon.lex files in my buckets?

What is the purpose of these files? Some get to be quite large 1179300775 Feb 9 16:45 merged_lexicon.lex
by Chris_R_ Splunk Employee Splunk Employee in Monitoring Splunk 02-20-2018
4 6
4
6
cotyp

What does the non-splunk processes entail in the monitoring console CPU usage by Process?

Hello, What does the non-splunk processes entail in the monitoring console CPU usage by Process? I have a virtual ma...
by cotyp Path Finder in Monitoring Splunk 02-20-2018
0 0
0
0
stmiller

How do I suppress monitors in the Website Monitoring app for a maintenance window?

I would like to create a maintenance window for the URL monitors inside the Website Monitoring app for ex. from midn...
by stmiller New Member in Monitoring Splunk 02-18-2018
0 4
0
4
Ganta

How to check daily cpu_system_pct using index="_introspection" host=* commands

How to check daily cpu_system_pct using index="_introspection" host= commands*
by Ganta New Member in Monitoring Splunk 02-16-2018
0 1
0
1
campbellwarren

How to find delta of cumulative values by day?

I am storing some performance counters in splunk. The data gets written one or more times per day (though not necess...
by campbellwarren Engager in Monitoring Splunk 02-15-2018
0 5
0
5
yutaka1005

About rotate settings of internal log(splunkd etc...)

I checked rotation's timing of the internal log with reference to the manual and log.cfg etc, but I could not find a ...
by yutaka1005 Builder in Monitoring Splunk 02-14-2018
0 1
0
1
Utkarsh_Singh

How to remove missing forwarder error in splunk 6.4

how to remove the missing forwarders error. What troubleshooting is required in such cases. I have checked the status...
by Utkarsh_Singh New Member in Monitoring Splunk 02-13-2018
0 1
0
1
IgorB

Performance impacts of Spectre/Meltdown mitigation

Does anyone have figures of the performance impact of CVE-2017-5754, CVE-2017-5753 and CVE-2017-5715 (Spectre/Meltdow...
by IgorB Path Finder in Monitoring Splunk 02-12-2018
29 13
29
13
snehalk

How to use Report acceleration in dashboard without using post process method in Splunk?

Hello All, I have a dashboard which loads large amounts of data, hence its impacting performance dashboard, so to ov...
by snehalk Communicator in Monitoring Splunk 02-12-2018
0 3
0
3
Ganta

How can I get the memory usage data of an indexer for the last 30 days per day?

Hi Team, I am checking for memory usage of an indexer by using: | rest splunk_server=MONSPKPRDCI08 /services/server...
by Ganta New Member in Monitoring Splunk 02-07-2018
0 1
0
1
Get Updates on the Splunk Community!

Deep insights, no barriers: Splunk Observability Cloud Free Edition

As software delivery cycles continue to accelerate, observability shouldn’t be a luxury — it should be a ...

Monitoring AI Agents with Splunk Observability Cloud

Let’s say I’m running a travel planning AI app in production. A user asks for three concise hotel options in ...

[Puzzles] Solve, Learn, Repeat: Tiling

This puzzle (first published here) is based on finding groups of tessellated tiles (inspired by floor tiles I ...