| | I have lots of hosts in my environment, but I only want to search across a few of them from time to time. Can I someh... 1 2 | 1 | 2 | |
| | Some of our servers are running low on Disk capacity and we are concerned with splunk log files generated and stored ... 7 2 | 7 | 2 | |
| | We have an global application hosted within a VM environment feeding a common Splunk index server. However the serve... 0 2 | 0 | 2 | |
| | Everytime I run a splunk command on windows 7, the command runs in a separate window and closes before I can see what... 1 2 | 1 | 2 | |
| | Hi folks I've got a distributed deployment and want to keep the overhead on the splunk forwarders as small as possib... 1 2 | 1 | 2 | |
| | Hai There, I am dealing with a forwarder to indexer which is reading a kiwi directory with several types of devices.... 1 2 | 1 | 2 | |
| | Does a sinkhole work on all types of forwarders? 3 1 | 3 | 1 | |
| | What should I attach to my install script if I want to start monitoring the event log in "tail" mode. I don't want t... 1 7 | 1 | 7 | |
| | How to disable hostname chaining? Splunk picks the chained hostname rather than the original. 0 1 | 0 | 1 | |
| | I have a light forwarder (v4.0.7) I want to change this to a forwarder instead of a light forwarder. The reason being... 0 3 | 0 | 3 | |
| | Where can I find the log for the bucket activities? I want to troubleshoot on when Splunk checks bucket sizes and wh... 1 2 | 1 | 2 | |
| | We're upgrading our forwarders and we always get the warning that outputs.conf cannot be migrated. However, simply m... 0 1 | 0 | 1 | |
| | When we build 2 Splunk indexing servers for High Availablity, 2 Splunk indexing servers may receive the same log data... 0 1 | 0 | 1 | |
| | We plan to use Splunk to keep log for several java application including web server like Tomcat. Those application ar... 2 1 | 2 | 1 | |
| | How do you get splunk to recognize new buckets without restarting splunkd? This makes the process of restoring or mo... 2 2 | 2 | 2 | |
| | Why would there be a gap of logged events in metrics.log between 01-21-2010 15:47:39.421 and 01-22-2010 08:53:28.231 ... 0 5 | 0 | 5 | |
| | This is related to an earlier question: http://answers.splunk.com/questions/490/why-do-variations-in-sourcetype-appea... 2 5 | 2 | 5 | |
| | In my environment we make clones of our linux servers so that we don't have to build out a server from scratch for ev... 0 2 | 0 | 2 | |
| | I'm concerned about CLI and REST authentication tokens. How long do those stay valid and is it configurable? 2 1 | 2 | 1 | |
| | Are queries that go to two index servers in different time zones handled correctly? I'm assuming it does, but want to... 0 1 | 0 | 1 | |
| | WHen I try to install it gives me a message that GLIBC-2.3 is required but there is no support to get this package fo... 0 1 | 0 | 1 | |
| | I do not see in any of the manuals or Help how to add host servers. You label the targets as Host on the main page bu... 1 1 | 1 | 1 | |
| | If a size- or time-based retention policy is set via maxTotalDataSizeMB or frozenTimePeriodInSecs in indexes.conf, ho... 3 2 | 3 | 2 | |
| | We have Splunk as part of our default vm image but we're having some bucket issues. Initially, the time isn't set an... 2 1 | 2 | 1 | |
| | How can I set up Splunk to automatically open troubletickets? 1 1 | 1 | 1 | |
