| | Hey all: I'm very interested in setting Splunk up to have it monitor all of my logs. One of such main requirements ... 2 10 | 2 | 10 | |
| | The following line is found when I try to restart the stopped splunkd process:- 05-12-2010 14:30:50.819 ERROR WordP... 2 1 | 2 | 1 | |
| | I'm looking for a way to create a minimal light forwarder installation. What can I remove from the standard Splunk de... 5 2 | 5 | 2 | |
| | Hi, Currently on our Splunk server, under Search "Summary" I have various hostnames registered under "Hosts" section... 1 3 | 1 | 3 | |
| | I have changed input.conf and restarted Spulnk, but I can't see any event generated for changing /etc/hosts file. Th... 3 2 | 3 | 2 | |
| | If I have a UDP input defined in /etc/system/local/inputs.conf and I create event filters using a transforms.conf and... 1 1 | 1 | 1 | |
| | Trying to put together a table that compares service versions across environments. Able to get a list using stats ... 2 4 | 2 | 4 | |
| | What I'd like is to have the date appended to the file name. Currently we have a scheduled saved search running each... 0 3 | 0 | 3 | |
| | So I have a lab box where I have applied 4.0.11 to my existing 4.0.10 installation. Ran the upgrade using rpm -U and... 1 2 | 1 | 2 | |
| | I am evaluating Splunk for use in monitoring application logs and am wondering if it is possible to group together li... 1 4 | 1 | 4 | |
| | Hey Guys, Just noticed that logging on one of my light forwarders is taking up a lot of space: myhost[05:15 PM]roo... 1 2 | 1 | 2 | |
| | I have received a few errors from my Light Forwarders on my main Splunk indexer. "received event for unconfigured/d... 0 1 | 0 | 1 | |
| | Can't find a reference to the following error. What does it mean and how do I fix it? Indexing Significant Warns: W... 1 4 | 1 | 4 | |
| | could someone please explain what stanza configuration i should include in the props.conf file to extract the size at... 1 2 | 1 | 2 | |
| | I've got some performance data and I want to be alerted when the avg(total_requests) split by uri rises or drops by 1... 1 1 | 1 | 1 | |
| | Hi, I cloned an application mysearch from search, and created 2 dashboards --- dashboard1 and dashboard2. Now, i wa... 1 2 | 1 | 2 | |
| | I'm familiar with some of the system-wide limits and per-user quotas that prevent a Splunk instance from getting over... 3 1 | 3 | 1 | |
| | I would like to aggregate data from my NPS servers for helpdesk/support use. I have set up a custom index on each se... 0 1 | 0 | 1 | |
| | On my Unix system: I have installed Splunk to: /opt/splunk/ However, now I'd like to move it to: /opt/splunk/serve... 0 2 | 0 | 2 | |
| | I would like to use the following cmd in splunk and I am getting errors. egrep "Failed password" auth.log | awk '{p... 2 3 | 2 | 3 | |
| | I have two related sets of data: Errors and CalcRun. The relationship in SQl speak is Many Errors to a CalcRun. When ... 0 1 | 0 | 1 | |
| | How do I secure my log file stream from our primary server to our dedicated Splunk server? Are there any secured laye... 1 7 | 1 | 7 | |
| | For indexer requirements, the following is listed as the recommendation configuration in the Planning Your Splunk Dep... 1 3 | 1 | 3 | |
| | Is it possible to define custom fields and hard-code their values on a per-forwarder basis? I'm looking to use such ... 0 6 | 0 | 6 | |
| | Let's say we want to process the typical data input like below : 12|Jones Indiana|76|223-33-3323|US|CALIFORNIA|MARRI... 0 4 | 0 | 4 | |
