| | is there a way to track configuration changes to splunk - either via splunkweb or command line? The idea is: Lets say... 0 5 | 0 | 5 | |
| | For some reason, looks like 2-3 of my indexes have stopped indexing. The monitor point to the indexes is pointed to d... 0 3 | 0 | 3 | |
| | I want a search that will tell me the total throughput of my indexing server, and then setup a notification if that t... 0 8 | 0 | 8 | |
| | I would like to splunk TripWire events so that I can search and correlate them with my other security, syslog, and ap... 0 1 | 0 | 1 | |
| | I’m currently getting a new log source ready for production, and I almost have it except for one issue. I’m forwardi... 0 10 | 0 | 10 | |
| | I am trying to build a report where I want to summarize the number of events for an entire year by day sorting by hos... 0 4 | 0 | 4 | |
| | I have a user that wants to schedule a search and cannot. I set up a test user and tried and can't do it either. 2 1 | 2 | 1 | |
| | So I have an xml formatted log added as a source, sourcetype'd as WSE_audit, and I'm trying to get it to basically sp... 3 8 | 3 | 8 | |
| | Anyone know if edi_tags was removed? I'm seeing the following warning message in the logs: AuthorizationManager ... 0 3 | 0 | 3 | |
| | I wanted to use Splunk to look at data in a file. I added this file in Data Inputs. After reviewing the data I want t... 0 1 | 0 | 1 | |
| | Since upgrading to splunk 4.1, all of my summary indexing saved searches now include following term stuck on the end ... 1 6 | 1 | 6 | |
| | Hi, I am trying to start splunk on a server running RH5, and get the belowmessage re: selinux. I have tried adding t... 1 4 | 1 | 4 | |
| | env[home] = linux, centos, splunk 4.0.11, everything on one test box cat /opt/splunk/etc/apps/unix/bin/uname.sh #!/... 0 6 | 0 | 6 | |
| | Hi all, I've been searching high and low to understand how to get Splunk aware of the changes in inputs.conf of an a... 2 3 | 2 | 3 | |
| | I am running a script that, simply put, inserts a record into Splunk for each person that is using space on our stor... 0 2 | 0 | 2 | |
| | In splunkd.log I see so many of the following warning message: 00-00-0000 00:08:00.000 WARN AuthorizationManager - Un... 4 4 | 4 | 4 | |
| | I have Splunk on both of my Squid proxies forwarding the access.log to our main Splunk installation. How would I cre... 0 1 | 0 | 1 | |
| | In my index, in the warm directory, I have some buckets like db_1274392278_1271804233_0, some hot_v1_1, and then this... 4 3 | 4 | 3 | |
| | How to run pstack and gcore against splunkweb python process? I need to troubleshoot a splunkweb hanging issue. 2 4 | 2 | 4 | |
| | What can I do to limit search results for one or more sourcetypes. I am able to get the results through the Splunkw... 0 4 | 0 | 4 | |
| | Anyone have a good working python DB table dump scripts that keeps track of last row marker? I guess it would be in-... 4 4 | 4 | 4 | |
| | Sometimes when restart the Splunk Light Forwarder, user will experience a core dump. The forwarder still restarts and... 1 3 | 1 | 3 | |
| | I have been looking everywhere and i have not found the procedure to execute this tasks. Please help me. Kind Regar... 0 4 | 0 | 4 | |
| | I'm seeing the following errors in splunkd.log and my file isn't being monitored properly -- the events don't seem to... 1 3 | 1 | 3 | |
| | Wondering if anyone has ever integrated ClearCase with Splunk yet. Does ClearCase provide text logs on disk or maybe ... 0 3 | 0 | 3 | |
