Splunk Enterprise

Discussions

Thread Info

How can I identify splunk forwarders?

I am trying to find a way to get a count of forwarders that are providing logs to my splunk environment. I am new to ...

by Explorer in

user-seed.conf not working

I'm attempting to use the user-seed.conf to set the admin password for my Windows Universal Forwarder installations, ...

by Motivator in

what directory should I put commands.conf

I am in /opt/apps/splunk/etc/apps/search/default when I edit commands.conf it says DO NOT EDIT THIS FILE! Pl...

by Path Finder in

Splunk Manager missing major functions

I'm brand new to Splunk. In the documentation and tutorials they show the manager having a number of top level areas,...

by New Member in

Why can't I run the poll_jmx.sh

[~]$ sudo /opt/splunk/etc/apps/SPLUNK4JMX/bin/poll_jmx.sh SPLUNK4JMX_HOME=/etc/apps/SPLUNK4JMX MAIN_CLASS=com.dtdsoft...

by New Member in

is it possible to fowarding an index of multiple indexes?

hi.. From an indexer, can I transmit one paticular index of all indexes to the other indexer? please answer.

by Communicator in

Editing props.conf & transforms.conf configuration file

I found that both props.conf & transforms.conf config files are found the $SPLUNK_HOME/etc/system/default/ directory....

by Communicator in

forwarder put data into wrong index

'sourcetype=udp:514' data should put into one same index, but it put part of data to main and another part of data to...

by Explorer in

ERROR BucketMover

What does following Error message means ? ERROR BucketMover - coldToFrozenScript exited with non-zero status: exit...

by Path Finder in

Universal Forwarder "Waiting For Data"

Good Morning, I installed Splunk Universal Forwarder on a Windows Machine, then I tried to collect Infomations fr...

by Explorer in

multiple indexes for different splunk forwarders

input.conf [default] host = web1 [monitor:///usr/local/apache/logs/] disabled = false host = web1 sourcetype = apa...

by New Member in

Splunk forwarder is using wrong NIC

Setting up a CAS server for the Exchange app. There are two NICs on the machine (2008 R2), the deployment server is s...

by Path Finder in

Splunk2Nagios Add-on - request URL too long issue

After downloading the Splunk2Nagios add-on and testing the check_splunk script, I'm receiving the following url, whic...

by Splunk Employee in

Indexes tiering age-based (not depend from size)

Hi, there is a way to roll data from hot to warm, and from warm to cold, per index, using the data's age? I found ...

by Path Finder in

Daily indexing volume exceeded

Hi I am currently using the free license as we are investigating the product for possible furture use in our syste...

by Engager in

Finding the top 10 or 15 processes in taskmgr search query.

Hey folks. Im new to splunk ive been created a bunch of different useful dashboards but i could not figure out how to...

by Explorer in

How do you split logs to other indexes

Currently I ahve all logs coming in from the esxi hosts on UDP port 514, how can I split the logs coming in into diff...

by Engager in

How to extract fields in search using REST API

I can get the search results with fields in UI: search deviceid=XXXXX | table deviceid ip ... I have the data like...

by Explorer in

Reroute Syslog Index

Hi, I am trying to re-route the syslog to a different index, which is currently going to main. My setting are not ...

by Contributor in

Splunk Forwarder and spoof

Hello Team/USers, This is Dharmendra and working on Splunk forwarder, I am having a question on Splunk forwarder i...

by New Member in

Get Updates on the Splunk Community!

Splunk Enterprise

Discussions

How can I identify splunk forwarders?

user-seed.conf not working

what directory should I put commands.conf

Splunk Manager missing major functions

Why can't I run the poll_jmx.sh

is it possible to fowarding an index of multiple indexes?

Editing props.conf & transforms.conf configuration file

forwarder put data into wrong index

ERROR BucketMover

Universal Forwarder "Waiting For Data"

multiple indexes for different splunk forwarders

Splunk forwarder is using wrong NIC

Splunk2Nagios Add-on - request URL too long issue

Indexes tiering age-based (not depend from size)

Daily indexing volume exceeded

Finding the top 10 or 15 processes in taskmgr search query.

How do you split logs to other indexes

How to extract fields in search using REST API

Reroute Syslog Index

Splunk Forwarder and spoof

New Splunk Observability innovations: Deeper visibility and smarter alerting to ...

Synthetic Monitoring: Not your Grandma’s Polyester! Tech Talk: DevOps Edition

Instrumenting Java Websocket Messaging

How to fix a full Splunk indexer queue?

How to create Splunk classic dashboard to show the...

How to configure/tell Splunk which CA is in use so...

Getting error "Driver version is invalid" for a My...

Disk error cluster indexers- is there a search tha...