...ypes where field names to replace are far less predictable. Our search heads have over 1000 KOs which referencethe xmlWinEventLog sourcetype.
Has anyone made the transition to SplunkAdd-onforWindows...
...counter then calculate the avg and stdev. Here is the query I have so far, mostly based ontheSplunk Docs Outlier information
index=perfmon collection=HTTP counter=CurrentConnections host=S...
...vent data from theSplunkAdd-onfor Microsoft Windows. What's the best way to migrate my Windowsperformance monitoring from event-based to metrics-based data?
I always saw these "OS" and "Windows" tags onthe eventtypes.conf and tags.conf. It's onthe production environment and splunkbase applications even we're only using default Splunk CIM. OS- can b...
I'm a Splunk administrator, not a Windows administrator, so my Windows knowledge is limited. Nonetheless, a many teams can benefit from having Windowsperformance data in Splunk. Is there a best p...
Out of the box, Splunk is able to collect a lot of Windows data. But I also see many items onSplunkbase forWindows and related Microsoft technologies. Is there a complete list of apps and when to u...
How can I calculate CPU of thesplunk server in percentage from the data in internal index? The data in internal index is as below where source = /opt/splunk/var/log/splunk/metrics.log...