Questions tagged [splunk]

Splunk is a tool for collecting, monitoring, visualizing and analyzing machine data from any source. You may receive faster responses at answers.splunk.com which is actively monitored by Splunk employees

Splunk

You may receive faster responses at community.splunk.com which is actively monitored by Splunk employees

Splunk is a tool for collecting, monitoring, and analyzing log files from servers, applications, or other sources. The primary features of Splunk include:

Collecting logs from multiple sources into a single location to allow for use without needing to access individual servers.
Parsing of logs with arbitrary formats, including free-form logs with no defined fields
Advanced querying of logs, including
- combining results from different sources
- filtering based on identified field values and pattern matching
- analyzing records using statistical and mapping functions
visualizing real-time data
the ability to create dashboards of various visualizations

The name "Splunk" comes from a rewriting of spelunking, a cave exploring hobby.

Splunk is available as both an enterprise application that runs on your servers (with a free tier) and a hosted service known as Splunk Cloud.

Useful links

2246 questions

votes

1 answer

Splunk vs ELK - Manage Production logs

I'm working on a system that performs daily HPC on a computer grid. There are a lot of servers, service and applications (Windows,Linux,IIS,Apache,Websphare,SQL,Mongo,.Net,Python,C++) It runs once every day. I'm very familiar with ELK. I especially…

asked Dec 24 '15 at 14:39

Amir Katz

1,027
1
10
24

votes

0 answers

How do I resolve 'abt_utf8_nextCharSafeBody' crash

I've seen around 177 occurrences for this. This is the stacktrace I got from Splunk Mint. Any workaround for this crash? Happens mostly on iOS 8.3 0 IOKit IOServiceAddInterestNotification (in IOKit) + 44 1 UIKit _MatchedBatteries (in UIKit)…

ios crash splunk

asked May 31 '15 at 15:00

Viren Rajput

5,426
5
30
41

votes

2 answers

How do I evade the limit of 100 entries in python splunk query

When executing a query via the splunk SDK, apparently the results are clipped after 100 entries. How to get around this limit? I tried: >job = service.jobs.create(qstring,max_count=0, max_time=0, count=10000) >while not job.is_ready(): …

python splunk

asked Dec 15 '14 at 20:19

mdurant

27,272
5
45
74

votes

1 answer

Configure log4j to send its logs to Splunk?

I need to send my log4j logs to Splunk. I found several solutions: To use REST API (e.g. curl -k -u admin:changeme -d "name=/tmp/myfile.log" -d "sourcetype=syslog" https://localhost:8089/servicesNS/admin/search/data/inputs/monitor) Install Splunk…

log4j splunk

asked Mar 20 '12 at 14:08

Constantine Gladky

1,245
6
27
45

votes

0 answers

Install R-project on splunk

I am trying to install 'R Analytics' in splunk (I am using Windows 10 (64-bit) operating system). I installed the 'R Analytics' app in splunk and 'OpenCPU' package in R. Unfortunately Run button in Script Editor does not work. I also found that…

r splunk

asked Nov 24 '21 at 21:28

Masoud

votes

1 answer

Parse IBM MQ v9.1 Error Logs using Splunk

I'm forwarding my IBM MQ v9.1 error logs using splunk forwarder to a centralized cluster to see trends on common error occurring across my distributed messaging systems. However I'm unable to parse the required fields, since the format of MQ error…

ibm-mq splunk

asked Apr 09 '20 at 18:48

Dhinesh Thiruppathi

votes

1 answer

Splunk - Stats search count by day with percentage against day-total

The use-case I have is to provide the count of a certain error (searched by a certain pattern) by day and provide a percentage of such 'errored' requests against the total number of requests (searched without the error pattern) handled every day.…

splunk splunk-query

asked Sep 24 '19 at 19:46

nocturno

votes

2 answers

How can fluent-bit add custom metadata to each event message being sent to splunk

I'm using fluent-bit within Kubernetes to forward logs to Splunk. We'll be using the same Splunk index for multiple Kubernetes clusters, so I want to tag each event being forwarded from fluent-bit with the cluster that it comes from. I tried using…

logging kubernetes splunk fluent-bit

asked Aug 12 '19 at 19:19

truncj

votes

0 answers

Example logging to Splunk w/ React 16+

I am looking for examples showing how to write log messages to Splunk from a React JS 16+ application. Splunk has a TypeScript snippet in their docs, but I am interested in seeing how others have tied it into the React framework so everything is…

reactjs splunk splunk-sdk

asked Jun 03 '19 at 12:15

SonOfPirate

5,642
3
41
97

votes

1 answer

splunk check if message contains certain string

In Splunk search query how to check if log message has a text or not? Log message: message: 2018-09-21T07:15:28,458+0000 comp=hub-lora-ingestor-0 [vert.x-eventloop-thread-0] INFO com.nsc.iot.hono.receiver.HonoReceiver - Connected successfully,…

java devops splunk splunk-query splunk-calculation

asked Sep 21 '18 at 09:54

Pratap A.K

4,337
11
42
79

votes

2 answers

Splunk how to combine two queries and get one answer

I am very new to Splunk and basically been dropped in the deep end!! also very new to language so any help and tips on the below would be great. The out come i am trying to get is to join the queries and get Username, ID and the amount of…

splunk splunk-query splunk-calculation splunk-formula splunk-sdk

asked Aug 16 '18 at 10:51

James

votes

0 answers

How can I prevent the Splunk SDK for Javascript from using my proxy environment variables?

I am not 100% sure, but I believe that the splunk-sdk is using my proxy environment variables. Due to restrictions at work on our application proxy, I cannot access Splunk from Node.js. I would like to know how to prevent the splunk-sdk from using…

javascript node.js proxy splunk

asked Sep 28 '17 at 02:59

mudda

votes

1 answer

How do I know Splunk REST API Base URL?

We have Splunk deployed in https://splunkit.corp.company.com (url modified). and able to access Splunk Web home page on https://splunkit.corp.company.com/en-US/app/launcher/home (url modified). I am building a dashboard application which uses the…

rest splunk

asked Aug 23 '17 at 12:10

Satishakumar Awati

3,604
1
29
50

votes

3 answers

show results from two splunk queries into one

I have two separate splunk queries: 1st Query : Outputs unique user count in last 24 hours 2nd Query : Outputs unique users count in last 24 hours in geo = US I want to create a timechart that will show , a line chart with % of user everyday from…

join splunk

asked Jan 06 '17 at 22:22

A-D

votes

0 answers

SPLUNK - REST API using C#

I'm trying to write a desktop app that downloads all the errors for a specific app in my splunk(bugsense) account, I downloade their sample app but its giving me the following error; Description: An assembly (probably "Splunk.Client") must be…

c# api rest splunk

asked Aug 11 '16 at 08:23

KhanZeeshan

1,410
5
23
36

Prev 1

…

99 100 Next