Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
372 results
Sorted by:
07-23-2022
09:24 AM
...ompare it to the \Splunk_TA_nix\lookups dir, there are at least 5 lookups missing. In 8.5 all 10 lookups are present.
https://docs.splunk.com/Documentation/AddOns/released/UnixLinux/Lookups...
Labels
- Labels:
-
installation
-
upgrade
10-05-2013
08:04 PM
3 Karma
...ettings: Categories page to add host categories and groups. When you make these changes, the Splunk App for Unix and Linux writes them to $SPLUNK_HOME/etc/apps/SA-nix/lookups/dropdowns.csv.
Are we t...
07-23-2015
02:17 PM
3 Karma
I installed the Splunk App for Unix and Linux 5.0.2 on my search head cluster. Installed the SA-nix app on the search heads and indexers, and deployed the Splunk Add-on for Unix and Linux everywhere....
07-11-2022
07:58 AM
...tage, let’s take as an example. Wanting to collect only some logs from hosts using a universal forwarder, using the “Splunk_TA_nix” and setting up a “/local/inputs.conf”, cherry-picking a few sources/f...
Labels
- Labels:
-
configuration
-
other
Show results in replies (9)
-
...ime I hint to maintain the same version of the TA in all your Splunk machines (UFs, HFs, SHs, IDXs and D...
-
Hi @fatsug, as I said, you use TA not only for input, but also for parsing, to better u...
-
...ix is used for input phase (on Forwarders and on all Splunk servers) but also for parsing and merging p...
-
Hi @gcusello Thank you for the feeback! OK, so even if monitoring only a single f...
-
Hello again @gcusello Thank you for clarifying. I get the point, there’s a lot going on...
-
Hi @fatsug, I disagree your choice for the reasons I explained, but it's your. See next t...
-
...A "as is", without modification' and this was what I was planning to do, "take a clean copy of the T...
-
...same configuration? UF only make use of the "input.conf" (and some scripts). Though if I place the...
-
...s relevant to have Linux logs from alla Linux machines, also Splunk Servers. For this reason I h...
06-08-2018
12:42 PM
1 Karma
Hello,
For planned test environment with ES I'm trying to see what fit better to my scenario.
I can see that Splunk Add-on for Unix and Linux can read the auditd via some script. I found also the...
04-21-2020
06:02 AM
Hi all,
I was working with Splunk's support on an issue with my previous post. They suggested the first step should be to correct the error seen in splunkd.log with interfaces.sh seeing a virbr0 i...
09-20-2022
05:54 AM
...istributed as a separate app, in addition to the Linux TA via the DS. Scripted inputs from the TA like "vmstat.sh" or "netstat.sh" can be browsed on the AiO and work so far. In the next step I wanted t...
Labels
- Labels:
-
configuration
-
troubleshooting
2 weeks ago
After clicking save on the setup page of the Unix / Linux add-on I receive an error message. "There was an unexpected problem while saving inputs. please reload page and try again". Is the a s...
Labels
- Labels:
-
configuration
03-10-2017
12:45 AM
Hi guys,
I've installed the Splunk App for Unix and Linux in my Splunk server (I've only 1 splunk server and N splunk universal forwarder).
On each forwarder I've installed the Splunk Add-on for...
12-08-2020
09:34 AM
Forgive my ignorance as I'm relatively new to Splunk. I'm currently hitting what I *think* is a data type issue, but I'm not quite sure how to proceed. We are using the Splunk add-on for Unix and...
Labels
- Labels:
-
alert condition
