Hi Guys, We use 3 Search Heads (cluster-linux boxes) with 2 Deployment boxes (1-PROD, 1-QA, Win 2012R2-32GB RAM Each) as searchpeer. All the other servers listed under distsearch.conf of SH a...
hello, when executing the command "zypper in ...." it gives me the following error: 'tmpRPMcache:splunkforwarder=0:7.0.2-03bbabbd5c0f' not found in package names. Trying capabilities. why does it happen?
...endemail in the search line is doing the same, and the error is: External search command 'sendemail' returned error code 1.
I tried to add an increase several parameters in the .conf files like i...
Hi
We have just switched from native Splunk authentication to PAM scripted authentication.
We are running Splunk 6.3.4 under LinuxSuse, sles 11.
After switching to PAM scripted a...
...sa-accesslist = cisco-asa-access-list-extract
[EDIT-2]: My search head is version 5.0.3, build 163460, running on SuSE 11.1 Linux.
[EDIT-3]: I get the same error if I give "extract" an non-e...
Hi, i have lookup which list out all red hat linux. for example, in my lookup have red hat 7, red hat 8 and so on. i need to correlate OS log with the lookup. but my OS log is not standardized as b...
Hi all,
we are trying to upgrade our SPlunk 7.2.3 to splunk 7.2.4 in our distributed envirnoment running on SUSE Enterprise Linux 15
and we are running into following Problem:
/var/tmp # r...
...he OS to Suselinux and at the same time upgrade to Splunk 8.2.6 , we want to prepare a parallel environment with the same number of nodes where to install the latest Splunk version.
We also w...
...here. This new linux splunk server doesnt have a connection to the other servers yet. When i am trying to start it i get the following error:
Any ideas?