...ngesting CS logs, not actually running the agent on a Splunk environment.
Forreference I have a modestly sized distributed architecture with three search-heads and three indexers (not clustered) in add...
...ostname as opposed to alias. We have perused the answers community and as well, referred Splunk documentation and have identified the below approach for indexer cluster migration. There's no single Splunk...
...hat I didn't miss a step:
Set maintenance mode onthe cluster
For each individual indexer
Stop indexer
edit etc/splunk-launch.conf to add a new 'SPLUNK_NETWORK_DB' variable
edit etc/s...
...counter then calculate the avg and stdev. Here is the query I have so far, mostly based ontheSplunk Docs Outlier information
index=perfmon collection=HTTP counter=CurrentConnections host=S...
Hello,
Is there any way to monitor CPU/ performanceon a Mac OS?
Does the universal forwarder for Mac include scripts for polling cpu/ram/etc.. ?
Regards,
David
Trying to monitor theperformance data on MacOS and downloaded SplunkAdd-onfor Unix and Linux After clicking 'save' for setting onSplunk Enterprise Web, it shows the page that says 'S...
Hello guys, I have below query which uses join. I see lots of examples how to replace that with stats, but I am not able to. I need to join on _time and another field called snat. Output should at l...
We use NetApp in our environment. Do you recommend creating two separate volumes forSPLUNK installation. First volume (with 1 LUN) to hold the C: drive and 😧 drive, Second Volume (with 1 LUN > R...