Splunk Search
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

maximum file size?

gregknell2011
Engager
‎04-20-2011 06:03 AM

Currently trying to index a 2.8Gb log cisco firewall log file. It doesn't seem to be progressing beyond saving over an hour. Splunks on a decent box and isn't under high load. What's the maximim file size supported?

Tags (3)
Reply

gregknell2011
Engager
‎04-21-2011 12:13 AM

Thanks for the response. It never managed to add the file via the webpage save, however when I set it to index the location instead it worked with no issues.

0 Karma
Reply

dwaddle
SplunkTrust
SplunkTrust
‎04-20-2011 08:54 AM

I don't think there is a specific maximum file size, beyond the underlying operating system / filesystem limits. You might find use in amrit's filestatus tool, which gives a realtime view into Splunk's tailing processor. See http://blogs.splunk.com/2011/01/02/did-i-miss-christmas-2/ for where to find it and how to use it.

Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Splunk Community Badges!

  Hey everyone! Ready to earn some serious bragging rights in the community? Along with our existing badges ...

How to find the worst searches in your Splunk environment and how to fix them

Everyone knows Splunk is a powerful platform for running searches and doing data analytics. Your ...

Share Your Feedback: On Admin Config Service (ACS)!

Help Us Build a Better Admin Config Service Experience (ACS)   We Want Your Feedback on Admin Config Service ...