Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
513 results
Sorted by:
05-20-2014
06:38 AM
Hi,
I've got ~15.000 events where FieldA exists (in total there are 20.000.000 events). I want to filter out these events and I'm wondering about the performance of different approaches.
Why i...
04-08-2022
07:34 AM
Hi
I am running a heavy forwarder with HEC and it is sending data to 3 indexers. I am starting to read about ways to optimise this configuration, but I am not sure if I have all the s...
- Tags:
- hec
- index-cluster
Labels
- Labels:
-
heavy forwarder
10-20-2010
12:54 PM
...isplay the dashboard. What constitutes a search: a data base search? or does the post search also count?
2) I did some rough counts, If I merge the 5 summary-indexes into one, there will be about 3...
03-13-2010
08:57 PM
2 Karma
I would like to use a lookup into an external database to add fields to my events, but need some advice about performance and caching of expensive lookups.
For example, say I have a log of o...
08-25-2021
11:51 AM
F.ex. when using NLog file target: https://github.com/NLog/NLog/wiki/File-target What's the optimal performance way for creating log files for the Forwarder? One record per file (t...
Labels
- Labels:
-
universal forwarder
04-07-2013
04:16 AM
1 Karma
...o keep clean with time and dashboards add, not satisfying.
2. Summary indexing
Summary indexing as far as i understood the way Splunk works is one of logical way to achieve optimization.
U...
10-21-2015
01:51 AM
...sers BY server_id
I'm thinking about how to optimize the performance of this dashboard.
1. Report Acceleration
Accelerate this base search (the output will be at least >3.000.000 r...
06-16-2015
02:56 PM
1 Karma
I have a dashboard that has over 30 panels - they all have the same basic search query so I decided to use the new search optimization of Splunk 6.2. Here is what I did - I defined a global search a...
03-23-2017
08:59 AM
...nown IPs from the logdata. However the searches seem to take a long time, and I'm not sure if its due to my non-optimized search or that its just too much logdata.
My goal was to search through the l...
