Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- About jimmytpowers
jimmytpowers
Path Finder
Member since:
06-24-2019
04-05-2022
Community Statistics
| Posts | 15 |
| Solutions | 3 |
| Karma Given | 1 |
| Karma Received | 1 |
| Member Since | 06-24-2019 |
Activity Feed
- Got Karma for Re: Splunk Security Cloud Makes Security Offerings Easier to Buy/Use In The Cloud. 06-22-2021 01:34 PM
- Karma Splunk Security Cloud Makes Security Offerings Easier to Buy/Use In The Cloud for bjennewein. 06-22-2021 01:31 PM
- Posted Re: Splunk Security Cloud Makes Security Offerings Easier to Buy/Use In The Cloud on Product News & Announcements. 06-22-2021 01:30 PM
- Posted Re: DHS AIS and CISCP taxii feeds - setup on Splunk Enterprise Security. 03-19-2020 01:54 PM
- Posted Re: Minimum disk usage(5000MB) on Search head error on Splunk Search. 07-11-2019 02:25 PM
- Posted Re: Minimum disk usage(5000MB) on Search head error on Splunk Search. 07-11-2019 12:04 PM
- Posted Re: Minimum disk usage(5000MB) on Search head error on Splunk Search. 07-11-2019 10:32 AM
- Posted Re: Minimum disk usage(5000MB) on Search head error on Splunk Search. 07-11-2019 10:03 AM
- Posted Re: Minimum disk usage(5000MB) on Search head error on Splunk Search. 07-11-2019 09:26 AM
- Posted Re: Total Logon Count for Each month on Splunk Search. 07-10-2019 05:16 PM
- Posted Re: Total Logon Count for Each month on Splunk Search. 07-09-2019 03:56 PM
- Posted Re: splunk ES and Esesntial app prequiest on Splunk Enterprise Security. 07-09-2019 01:56 PM
- Posted Re: Forwarder not starting on Getting Data In. 07-02-2019 02:37 PM
- Posted Re: Forwarder not starting on Getting Data In. 07-02-2019 02:21 PM
- Posted Re: How to re-enroll for Splunk course (removed a course) on Training + Certification Discussions. 07-02-2019 02:05 PM
- Posted Re: splunk cloud trial version | no data found after Search on Installation. 07-02-2019 01:53 PM
- Posted Re: Forwarder not starting on Getting Data In. 07-02-2019 01:06 PM
Topics I've Started
No posts to display.
06-22-2021
01:30 PM
1 Karma
What a fantastic idea to bundle up everything for a nice and smooth implementation, makes so much sense, and will further assist in raising the security maturity of our customers!!
... View more
03-19-2020
01:54 PM
Were you ever able to get success with DHS TAXII feeds?
... View more
07-11-2019
02:25 PM
SH Clustering is the way to go!!!
... View more
07-11-2019
12:04 PM
How did it work out for you?
... View more
07-11-2019
10:32 AM
You can change via server.conf, CLI or Splunk Web 🙂
https://docs.splunk.com/Documentation/Splunk/7.3.0/Indexer/Setlimitsondiskusage
remember to select your correct version of Splunk on the top right
... View more
07-11-2019
10:03 AM
I would add the server.conf stanza on the NAS instance, and possibly look into the below if it doesn't resolve the issue.
https://docs.splunk.com/Documentation/Splunk/7.3.0/DistSearch/Manageconfigurationchanges
... View more
07-11-2019
09:26 AM
Hello ramprakash,
If it won't affect your performance, you can add a [diskUsage] stanza in server.conf, right now your minFreeSpace is 5Gb, you can lower that threshold to 1Gb or you can add more storage.
Below will help remove the error, and show the instance as healthy, but won't address the storage issue, if there is one.
$SPLUNK_HOME/etc/system/local/server.conf
[diskUsage]
minFreeSpace = 1000
Cheers,
... View more
07-09-2019
03:56 PM
You should consider reworking your search using the timechart command instead of table and stats:
https://docs.splunk.com/Documentation/Splunk/latest/SearchReference/Timechart?r=searchtip
Once this is done, Returned statistics can be displayed as a visualization via the GUI, you can find information about that here :
https://docs.splunk.com/Documentation/Splunk/7.3.0/SearchTutorial/Chartasareport
... View more
07-09-2019
01:56 PM
Hello,
Try here : https://docs.splunk.com/Documentation/ES/5.3.0/Install/DeploymentPlanning
Also a best practice to utilize CIM to normalize data, I would install it.
Cheers,
... View more
07-02-2019
02:37 PM
It can generate certs by default, and they expire after 3 years.
https://docs.splunk.com/Documentation/Splunk/7.3.0/Security/Aboutsecuringdatafromforwarders
... View more
07-02-2019
02:21 PM
Yes, and you can delete the old forwarder directory once you apply all the old configs to the new, and get the data forwarding to indexers.
... View more
07-02-2019
02:05 PM
Hello,
Email Splunk Education in your respective region and request to re-enroll.
Americas: education_amer@splunk.com
Europe: education_emea@splunk.com
Asia/Japan/Australia: education_apac@splunk.com
Cheers,
... View more
07-02-2019
01:53 PM
I recommend using this product (Splunk Enterprise) for the fundamentals I course, it gives you a 60 day trial vs. 14 days with Splunk Cloud
download and install from here :
https://www.splunk.com/en_us/download/splunk-enterprise.html
If you prefer to use Splunk Cloud, it sounds like you may not have added any data, here is the documentation on how to accomplish that.
https://docs.splunk.com/Documentation/SplunkCloud/7.2.6/Data/Getstartedwithgettingdatain
Cheers,
... View more
07-02-2019
01:06 PM
Hello,
Save a copy of inputs.conf from the current instance, re-install the forwarder and place the saved copy of inputs.conf in the correct directory.
I would also adjust the Ulimits to the recommended settings.
Cheers,
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
04-05-2022
05:02 PM
|
