Solved: Re: splunk crash upon receiving too many sockets

yanivoren · ‎12-19-2012

Hi,
I'm working on splunk free, I try to run multiple connections by sockets.
If I try to many sockets (about 350), the splunk server is stuck and I'm getting these errors:
In web service : errors "Splunkd daemon is not responding"
In splunkd : warnings "write failed with :104" or "write failed with :32".
How many connection can splunk handle? and is it suppose to crash if too many connections are opened?
TIA

LukeMurphey · ‎01-16-2013

A defect in Windows causes sockets to be leaked. This can be fixed by applying a patch; see the Microsoft KB.

View solution in original post

LukeMurphey · ‎01-16-2013

A defect in Windows causes sockets to be leaked. This can be fixed by applying a patch; see the Microsoft KB.

LukeMurphey · ‎01-30-2013

Note that increasing the number of ephemeral ports per http://support.microsoft.com/kb/q196271 only delays the recurrence of the issue.

splunk crash upon receiving too many sockets

Splunk Search APIを使えば調査過程が残せます

Integrating Splunk Search API and Quarto to Create Reproducible Investigation ...

Congratulations to the 2025-2026 SplunkTrust!

Join the Conversation

splunk crash upon receiving too many sockets

Splunk Search APIを使えば調査過程が残せます

Integrating Splunk Search API and Quarto to Create Reproducible Investigation ...

Congratulations to the 2025-2026 SplunkTrust!