×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
jlyon_splunk
Splunk Employee
Member since: ‎02-25-2014
‎05-06-2022
Community Statistics
Posts 2
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎02-25-2014
View All

Splunk Cloud historical data migration S3Client

by Splunk Employee in Splunk Cloud Platform
‎05-05-2022 07:33 AM
‎05-05-2022 07:33 AM
I'm in the middle of doing historical data migration form on-prem indexers to S3 in Splunk Cloud. Some of the data is making it through, but I'm getting a ton of these type messages in splunkd.log on the on-prem indexers: WARN S3Client - Error getting object name = <...GUID/receipt.json(0,-1,) to localPath = /opt/splunk/var/run/splunk/cachemanager/receipt-(some numbers.json>   ... View more

Why would a search from a datamodel take longer th...

by Splunk Employee in Splunk Search
‎06-25-2015 12:44 PM
‎06-25-2015 12:44 PM
I performed this search: | datamodel Authentication Autherntication search | search Authentication.src=xxx.yyy.com (over past 60 min) the results took 6.26 min the search against raw: index=* xxx.yyy.com and the same number of results only took 10 seconds to return... ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎05-06-2022 06:25 PM