About DanielleM

DanielleM · ‎06-22-2020

I never quite figured this out but found that keeping splunk as the root / in NGINX instead of /splunk fixed the problem.

DanielleM · ‎04-02-2020

I am trying to use Splunk in a docker container behind an NGINX proxy. It is working for the most part but I get error when trying to upload lookup files or modify any server settings - "Your entry was not saved. The following error was reported: SyntaxError: Unexpected token < in JSON at position 0." Has anyone seen this before or have experience working with Splunk behind NGINX proxy? Note: I have web.conf configured with "root_endpoint = /splunk" Thanks!

DanielleM · ‎10-31-2019

That works, thank you !!!

DanielleM · ‎10-31-2019

I am calculating monthly averages and have an issue where on a single day in October there was an error in the data. I would like to remove this single date and time range (Oct 12th 00:00-04:00) from the overall monthly average but don't want to impact future month calculations. I run the following command for year to date to get monthly average - index=xyz sourcetype=zyx | timechart span=1month avg(VALUE) When I add NOT earliest="10/12/2019:00:00:00" latest="10/12/2019:04:00:00" to my base search it only provides that date. I tried adding brackets etc and it is not working. Any suggestions would be appreciated! Thanks!

Posts	4
Solutions	0
Karma Given	2
Karma Received	0
Member Since	‎09-11-2019

Online Status	Offline
Date Last Visited	‎06-22-2020 05:56 PM

Splunk Docker container behind NGINX proxy - JSON ...

Exclude a specific date/time of data from an overa...

Re: Splunk Docker container behind NGINX proxy - J...

Splunk Docker container behind NGINX proxy - JSON ...

Re: Exclude a specific date/time of data from an o...

Exclude a specific date/time of data from an overa...