Hunk v6.2.2 to hortonworks hadoop v2.2.4.2. My search-time field extraction for client_host is not consistent. It will return too few results or none at all. For example, if I search "index=h...
Running a query in Hunk against the firewall logs stored over the last 60 minutes and it appears to complete, but I see this:
• [cdhprovider] Error while running external process, return_code=255....
Hello, I am trying to troubleshoot sendemail.py since after an upgrate to red hat 9 our splunk stopped sending emails. I understand the command to use the splunk python interpreter in the cli i...
I ran this search on splunk cloud web and I got the results below. Can anyone help on how to resolve
index=_internal source=*/splunkforwarder/var/log/splunk/splunkd.log OR source=*Spl...
Hi, I'm encountering this error when i run btool check: Invalid key in stanza [email] in /opt/splunk/etc/apps/search/local/alert_actions.conf, line 2: show_password (value: True). and in...
...ave something to do with this. I am trying to further troubleshoot and figure out how the data is being brought into that index but I am not a seasoned splunk veteran by any means.
S...
A new custom app and index was created and successfully deployed to 37 clients, as seen in the Fowarder Management interface in my Deployment Server. However, I do not see any data when searching in ...
Greetings!! Need your advice and opinions on the following points: - What training can I take to master splunk admin troubleshooting issues and complete the admin training package, - Is there a...
How can I troubleshoot the deployment server or universal or heavy forwarder?
I set up deployment server then in forwarders I run ./splunk set deploy-poll ip:port
But Forwarder M...