About rsimieng

rsimieng · ‎04-05-2011

If you are referring to http://splunkbase.splunk.com/apps/All/3.x/app:Script+for+database+input, I've been able to use it with a Splunk instance of 4.1.5.

rsimieng · ‎04-01-2011

During a 4.2 upgrade on an indexer, does the upgrade convert the old indexes to the new 4.2 format?

rsimieng · ‎03-16-2011

I am encountering the following error when distributing search between a 4.2 search head and a 4.1.5 indexer: Asynchronous bundle replication might cause (pre 4.2) search peers to run searches with different bundle/config versions. Results might not be correct Questions: Is a 4.2 search head designed to be compatible with a pre 4.2 indexer via distributed search? Is there any way to resolve this error besides upgrading the indexers to 4.2?

rsimieng · ‎02-01-2011

Inside your $SPLUNK_HOME/etc/system/local/indexes.conf, did you apply maxTotalDataSizeMB specifically to an index of your own creation or to [default]? As a test, create an index [test] and limit the size maxTotalDataSizeMB = 5 and run data through. Check your index size (gui --> manager is fine). If you get a chance, post your indexes.conf.

Posts	5
Solutions	0
Karma Given	1
Karma Received	1
Member Since	‎01-12-2011

Online Status	Offline
Date Last Visited	‎06-05-2020 02:02 AM

What happens to old buckets when upgrading to 4.2?

4.2 search head - Asynchronous bundle replication ...

Re: Script for database inputs

What happens to old buckets when upgrading to 4.2?

4.2 search head - Asynchronous bundle replication ...

Re: Managing bucket sizes?

Join the Conversation

What happens to old buckets when upgrading to 4.2?

4.2 search head - Asynchronous bundle replication ...

Re: Script for database inputs

What happens to old buckets when upgrading to 4.2?

4.2 search head - Asynchronous bundle replication ...

Re: Managing bucket sizes?