cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
malberto
Explorer
Member since: ‎06-27-2011
‎06-05-2020
Community Statistics
Posts 6
Solutions 1
Karma Given 7
Karma Received 6
Member Since ‎06-27-2011
Activity Feed
Topics I've Started
No posts to display.
View All

Re: Is Splunk 4.2.3 for Windows 64 buggy or is it ...

by in Splunk Search
‎08-15-2011 12:45 PM
1 Karma
‎08-15-2011 12:45 PM
1 Karma
Is ANY of this behavior than Splunk on any other platform? 1) What sourcetype are your syslog files classified as? If they aren't syslog, you should add them as inputs and explicitly set the sourcetype to syslog. 2) This is probably a result of #1. Otherwise, you can explicitly specify the timestamp format in props.conf with TIMESTAMP_CONFIG 3) cycle redundancy check is not windows related it sounds. ... View more

Re: Searches stuck in Jobs window

by in Reporting
‎08-15-2011 12:41 PM
2 Karma
‎08-15-2011 12:41 PM
2 Karma
I think those are auto-paused after 30 seconds. Is this a concern? ... View more

Re: Installing Splunk

by in Installation
‎08-15-2011 12:31 PM
1 Karma
‎08-15-2011 12:31 PM
1 Karma
Seriously? Read the docs. ... View more

Re: Specific rex doesnt seem to work

by in Splunk Search
‎06-27-2011 09:44 AM
1 Karma
‎06-27-2011 09:44 AM
1 Karma
Why are you doing "\s" in one place and "\s" in another! Why do you have "SATAII\s\s" when sometimes you have "SATAII" and sometimes "SATA SSD". Your regex will match either. You want: "...|SATAII|..." It seems to be that what you REALLY want is just: "Drive\sType:\s+(? .+?)$" Any DriveType until the newline. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:03 AM
Karma from
View All