×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
bennch68
Engager
Member since: ‎01-02-2025
‎01-24-2025
Community Statistics
Posts 2
Solutions 0
Karma Given 1
Karma Received 0
Member Since ‎01-02-2025
View All

Re: How to check MQ reconnects after a connection ...

by in Splunk Search
‎01-24-2025 01:05 PM
‎01-24-2025 01:05 PM
The search appears to be working a treat. Now just need to understand why, so lots to learn 😃 Thank you very much for your help. Kind regards Chris ... View more

How to check MQ reconnects after a connection is d...

by in Splunk Search
‎01-02-2025 02:04 PM
‎01-02-2025 02:04 PM
Hi All, I am rather hoping someone can assist me in creating a search that can be used for an alert to detect when a connection to MQ fails to re-connect for a system I am supporting. I am new to Splunk and although I have found posts related to this topic, I have so far not been able to adapt them for my particular scenario. I was hopeful the search below would suffice, but then realised it only works as I wanted it to if the MQ connection actually drops, otherwise the count evaluates as 0 and I end up with a false alerts.   index="sepa_instant" source="D:\\Apps\\Instant_Sepa_01\\log\\ContinuityRequester*" | transaction startswith="connection_down_error raised" maxspan=4m | search "-INFOS- {3} QM reconnected" | stats count | where count="0" Any assistance provided would be very much appreciated.   ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎01-24-2025 05:26 PM
Karma given to
View All