| | What are the id_XX buckets that show up under "index activity", They also show up in the bucket directories. What do ... 0 4 | 0 | 4 | |
| | If I have a Splunk indexer running on a 32-bit OS and another Splunk indexer running on a 64-bit OS, can I setup Splu... 1 2 | 1 | 2 | |
| | On Splunk 4.1, I see a bunch of these messages. What do they mean? Should I be concerned? 04-28-2010 13:48:32.27... 2 3 | 2 | 3 | |
| | So i've set up a form dashboard to filter a query displayed in a table. Is there any way to get a "google suggest" t... 1 4 | 1 | 4 | |
| | Hi, i saw many suggestions to routing data to different index from light forwarder but none seems to work. I have se... 3 5 | 3 | 5 | |
| | I am trying to forward event logs from a Windows XP machine to a Windows 2003 machine. I set up Splunk on the Window... 1 1 | 1 | 1 | |
| | Hey all: I'm very interested in setting Splunk up to have it monitor all of my logs. One of such main requirements ... 2 10 | 2 | 10 | |
| | The following line is found when I try to restart the stopped splunkd process:- 05-12-2010 14:30:50.819 ERROR WordP... 2 1 | 2 | 1 | |
| | I'm looking for a way to create a minimal light forwarder installation. What can I remove from the standard Splunk de... 5 2 | 5 | 2 | |
| | I have changed input.conf and restarted Spulnk, but I can't see any event generated for changing /etc/hosts file. Th... 3 2 | 3 | 2 | |
| | If I have a UDP input defined in /etc/system/local/inputs.conf and I create event filters using a transforms.conf and... 1 1 | 1 | 1 | |
| | What I'd like is to have the date appended to the file name. Currently we have a scheduled saved search running each... 0 3 | 0 | 3 | |
| | So I have a lab box where I have applied 4.0.11 to my existing 4.0.10 installation. Ran the upgrade using rpm -U and... 1 2 | 1 | 2 | |
| | Hey Guys, Just noticed that logging on one of my light forwarders is taking up a lot of space: myhost[05:15 PM]roo... 1 2 | 1 | 2 | |
| | I have received a few errors from my Light Forwarders on my main Splunk indexer. "received event for unconfigured/d... 0 1 | 0 | 1 | |
| | Can't find a reference to the following error. What does it mean and how do I fix it? Indexing Significant Warns: W... 1 4 | 1 | 4 | |
| | Hi, I cloned an application mysearch from search, and created 2 dashboards --- dashboard1 and dashboard2. Now, i wa... 1 2 | 1 | 2 | |
| | I'm familiar with some of the system-wide limits and per-user quotas that prevent a Splunk instance from getting over... 3 1 | 3 | 1 | |
| | I would like to aggregate data from my NPS servers for helpdesk/support use. I have set up a custom index on each se... 0 1 | 0 | 1 | |
| | On my Unix system: I have installed Splunk to: /opt/splunk/ However, now I'd like to move it to: /opt/splunk/serve... 0 2 | 0 | 2 | |
| | How do I secure my log file stream from our primary server to our dedicated Splunk server? Are there any secured laye... 1 7 | 1 | 7 | |
| | For indexer requirements, the following is listed as the recommendation configuration in the Planning Your Splunk Dep... 1 3 | 1 | 3 | |
| | Hi, I have a requirement to extract all the events in a file. Example: For an order number, there are around 100 e... 0 2 | 0 | 2 | |
| | Is there any way to prepopulate the Time Picker via a URL parameter? I need to build a search dynamically in an exte... 2 3 | 2 | 3 | |
| | Windows Server 2008 R2 x64 (Windows AD Domain Controller) / Splunk 4.1.1 set up as a full forwarder (custom app via d... 1 4 | 1 | 4 | |
