Monitoring Splunk

Community Activity

failed to read splunkforwader status after installation in linux machine what is permission command by vid1 Explorer in Monitoring Splunk 08-08-2024 0 1	0	1
Forwarder version in dmc_forwarder_assets lookup is updated in un unreliable way Hi Lookup table doesn't contain the current version of the forwarder. Instead, the highest ever seen version is store... by psla Explorer in Monitoring Splunk 08-07-2024 0 1	0	1
disk space error The diskspace remaining=6235 has breached the yellow threshold for filesystems=['C:\Program Files\Splunk\var\lib\splu... by s_unny Loves-to-Learn Lots in Monitoring Splunk 08-07-2024 0 2	0	2
hosts not reporting I have following search. how can I add indexes information in the results:\|tstats max(_time) as _time, where index=wi... by raiqb01 Engager in Monitoring Splunk 08-05-2024 0 3	0	3
How to find the details from the csv file in a new field for further processing using lookup ? Hi Can someone tell me how we can use a csv file using a lookup and extract the details from a file in a field which ... by Real_captain Path Finder in Monitoring Splunk 07-31-2024 0 2	0	2
Windows Server 2016 removed as of Universal Forward 9.3 Why was Windows Server 2016 removed from Splunk Universal Forwarder as of v9.3 (7/30/2024), when Windows Server 2016 ... by WL8on Engager in Monitoring Splunk 07-31-2024 0 3	0	3
Number of appserver.py processes increasing, causing OOM Search Head appears to have a rogue python process ( appserver.py) that slowly eats away all memory on the system, t... by hrawat Splunk Employee in Monitoring Splunk 07-30-2024 0 3	0	3
Data Durability issue I have a problem with data it's self and i have 2RF 2SF and they are works fine i tried to roll buckets multiple time... by KhalidAlharthi Explorer in Monitoring Splunk 07-22-2024 0 2	0	2
I am not sure where to find performance data or which on default index it is stored in Hello,I installed the forwarder on a Windows machine, and during the installation, I selected the Windows performance... by BRFZ Communicator in Monitoring Splunk 07-22-2024 0 1	0	1
Splunk HF parallel pipelines utilization Hi, We have high-volume syslog input configured on a HF with Splunk v.7.2.5 and we started noticing TailReader-0 pip... by vanvan Path Finder in Monitoring Splunk 07-18-2024 0 3	0	3
DNS Request Hey,I would love to get helpI want to build a query to be a rule that will monitor DNS requestsI work with two INDEXE... by NoamP New Member in Monitoring Splunk 07-10-2024 0 2	0	2
Use _indextime for data retention policy? Is it possible to reconfigure Splunk to use _indextime instead of _time for data retention policy? by jinxkamada Explorer in Monitoring Splunk 07-08-2024 0 5	0	5
How to pause and resume the Splunk RUM agent While monitoring Real User Monitoring, should the performance of the web application deteriorate for any reason, we w... by sreenut New Member in Monitoring Splunk 07-06-2024 0 0	0	0
Connect HEC token to Monitoring Console We get data in using HEC tokens, and the data is flowing just fine. But when we try to view the HTTP Event Collector ... by wpb162 Explorer in Monitoring Splunk 07-03-2024 0 1	0	1
HOW TO CALCULATE LOG SAVE ON INDEXER Hi guys,My boss check on Splunk Master and see that, he want to know index, source, sourcetype, capacity of log/day ... by jacknguyen Path Finder in Monitoring Splunk 07-02-2024 0 8	0	8
Skipped Search Hi Team, An alert is scheduled to run for every 2 hours It is getting skippedper day the alert will run - 12 timesFor... by VijaySrrie Builder in Monitoring Splunk 07-01-2024 0 1	0	1
To fetch the count of events between the start and end of particular event. HiRequirement: To fetch the count of events between the start and end of particular event. Example : i have to find ... by Real_captain Path Finder in Monitoring Splunk 06-27-2024 0 3	0	3
Is it possible for squash_threshold to increase value, and are there consequences? Hello Splunkers, I would like to have a better insight on my license usage, but the "Squash_threshold" default conf i... by AntoineDRN Path Finder in Monitoring Splunk 06-26-2024 1 4	1	4
To find the difference of time between 2 timestamp fields Hi Can you please let me know how we can find the difference of time between 2 timestamp fields. For example, 2 time... by Real_captain Path Finder in Monitoring Splunk 06-25-2024 0 3	0	3
Logging of Restart Trigger Hi there,for better visibility i built a dashboard for indexer restarts, this dashboard is based on the _internal ind... by TheEggi98 Path Finder in Monitoring Splunk 06-24-2024 0 0	0	0
Volume detail not showing data in Monitoring Console v9.2.0.1Monitoring Console in Splunk manager is not displaying volume information. All panels say "Search is waiting ... by mykol_j Communicator in Monitoring Splunk 06-17-2024 0 5	0	5
Push notifications stopped working Has anyone noticed the push notifications through the Splunk Mobile app has stopped working recently.We are using Spu... by vishalduttauk Communicator in Monitoring Splunk 06-13-2024 1 3	1	3
Monitor Splunk I want to monitor Splunk Enterprise in a cluster environment. I monitor the Splunk infrastructure with Newrelic, and ... by taka Explorer in Monitoring Splunk 06-11-2024 0 4	0	4
Quarantine files framework - Unexpected error during execution Following two error repeats every minute in splunkd.log on Splunk EnterpriseWhat is causing this? 06-07-2024 10:45:00... by pellegrini Path Finder in Monitoring Splunk 06-07-2024 0 1	0	1
Splunk Audit Log Truncate Hi,since a couple of days i getting these errors from one of my search heads:"06-05-2024 14:33:35.300 +0200 WARN Line... by DanielAmlung Path Finder in Monitoring Splunk 06-05-2024 0 3	0	3