Splunk Enterprise

Community Activity

Too many UFs and too many ports for too many indexers as we scale- Are there any alternatives for load balancing across? Though not an emergency yet, I am hoping to make a decision on one of the two following options soon: 1. Double down ... by justinhaynes Loves-to-Learn in Splunk Enterprise 12-31-2022 0 0	0	0
How can I send event log to custom search commands Hello !!I want to read index=test line by line and then analyze log by log_dict and parser_log function..is it pos... by bkhwang Explorer in Splunk Enterprise 12-30-2022 0 4	0	4
Forwarder Monitoring is disabled. On a Windows Server when I go to Settings \ Monitoring Console and launch it, there is a Menu item called: Forwarders... by Gregski11 Contributor in Splunk Enterprise 12-30-2022 0 3	0	3
Searches getting queued For an index the job are getting queued when ever the users runs the searchs.Please let me where to increase/tweak th... by sathiyasun Explorer in Splunk Enterprise 12-29-2022 0 1	0	1
Why are we getting this error after upgrading Splunk DB Connect? 02-24-2022 21:24:10.711 INFO ScopedTimer [9796 searchOrchestrator] - search.optimize 0.030224023 02-24-2022 21:24:1... by rlucier New Member in Splunk Enterprise 12-29-2022 0 1	0	1
Update from Splunkbase An error occurred while installing the app: 500 anyone else find that running the automagic app version updates is hit and miss, sometimes it works, and sometimes it... by Gregski11 Contributor in Splunk Enterprise 12-29-2022 0 0	0	0
How to extract fields in the data model? Hi, I'm new to the regex, can someone please help me in regex to extract file name and file path separately in the d... by Daksesh Explorer in Splunk Enterprise 12-28-2022 0 9	0	9
Error in 'tstats' command: This command must be the first command of a search? Hello, I was using a search and getting an error message stated in the subject. I have tried moving the tstats around... by Frofro87 New Member in Splunk Enterprise 12-28-2022 0 2	0	2
Splunk Platform Upgrade Readiness App showing up blank? Hello to all,I have a problem with the Splunk Platform Upgrade Readiness App.When I launch it the window is entirely ... by gcusello SplunkTrust in Splunk Enterprise 12-28-2022 0 4	0	4
How to resolve Cache Manager error message - TcpChannelThread? 11-12-2023 21:20:03.288 +0900 ERROR CacheManager [3953110 TcpChannelThread] - Failed to check receipt for cache_id=""... by restinlinux Explorer in Splunk Enterprise 12-27-2022 0 1	0	1
Why is data not indexed for data input? I have index that suddenly stoped indexing data. even after I entered crcSalt = <SOURCE> to the inputs.conf file data... by mcohen13 Loves-to-Learn in Splunk Enterprise 12-27-2022 0 1	0	1
Golang execute Splunk search For fun to learn golang I made utility code to execute the query from a text file. It will use credentials or an auth... by starcher Influencer in Splunk Enterprise 12-25-2022 1 0	1	0
How to solve the problem related to indexing after version upgrade I received red alarms from health status.The types of alarm vary over time.but the warnings that continuously occur a... by jjeongeunida Engager in Splunk Enterprise 12-25-2022 0 2	0	2
9v agent upgrades automation in silent more not working \quiet AGREETOLICENSE=Yes (2019 win server) tried a lot of things but no joy - recommendations would be helpful:9v agent upgrades automation in silent more not w... by jcorcoran508 Path Finder in Splunk Enterprise 12-23-2022 0 0	0	0
Dashboard - Screenshot Button Hello,I am trying to figure out why the script for my dashboard will not produce results. I am getting the error belo... by threadover Loves-to-Learn Everything in Splunk Enterprise 12-22-2022 0 0	0	0
How to write a search to implement NOT IN functionality in SQL along with eval? I am new to splunk and working on a complex query where;I am supposed to implement NOT IN functionality in SQL along ... by ShubhamWanne Explorer in Splunk Enterprise 12-22-2022 0 5	0	5
How to connect to Splunk in a VM from Local Machine? Hi, I need to Connect to Splunk Enterprise that is hosted within a VM from my Local Machine using Python. I tried wit... by Kashif Observer in Splunk Enterprise 12-21-2022 0 3	0	3
Looking for Splunk administration stuff- any good source or website apart from splunk documentation? Dear splunkers, I would like to ask you that, I am looking for Splunk administration stuff any good source or website... by Shakeer_Spl Explorer in Splunk Enterprise 12-21-2022 0 2	0	2
Unable to see logs on search head? Hello Team i am using syslog for logs ingestion of solaris servers.I can see results for tcpdump host solarisServer.b... by sonishar Explorer in Splunk Enterprise 12-20-2022 0 1	0	1
Will KV Store Upgrade if Disabled? It seems that the KV Store is enabled by default on all servers. On non-SHs, if we set[kvstore]disabled = trueand up... by SplunkNinja Path Finder in Splunk Enterprise 12-19-2022 0 0	0	0
Updating App on SHC member via GUI An app was updated via the GUI on a SHC member. What exactly does the Splunkbase install do/check? What needs to be d... by TheBravoSierra Path Finder in Splunk Enterprise 12-19-2022 0 1	0	1
/opt/splunk ownership Hi, If anyone can help me with this it would be truly helpful. I'm currently practicing to become a Splunk architect ... by OgoSplunk Path Finder in Splunk Enterprise 12-19-2022 0 1	0	1
How to troubleshoot a scheduler that has a high amount of concurrent searches running constantly? We are running a SHC with Splunk Enterprise OnPrem 9.0.1 and noticed that the concurrent searches in one of the nodes... by joshiro Communicator in Splunk Enterprise 12-19-2022 0 1	0	1
Why is Splunk process (splunk -p 8089 restart) taking so much CPU? Hi Splunkers, I'm having an issue with my Splunk instance here. I'm running Splunk as a search head and an Indexer on... by muradgh Path Finder in Splunk Enterprise 12-18-2022 0 2	0	2
What is the correct method to backup/restore Splunk Enterprise? What is the correct method to backup/restore Splunk Enterprise? I believe I can backup (Linux) using this command: ta... by SplunkNinja Path Finder in Splunk Enterprise 12-17-2022 0 8	0	8