full list of Windows server inputs.conf for SAI app
Anyone able to share a full list of inputs.conf My current inputs for SAI won't forward unless i reduce counters for each metric_name considerably Thanks
View ArticleMetrics dimensions shares
What is the best way to get dimensions share for metrics index? For example is I have dimension IS_ERROR with "bool value", how to get error rate?
View ArticleFilter Metrics on Heavy Forwarder
Is it possible to filter metrics on the Heavy Forwarder so they don't get passed along? Either a whitelist approach or blacklist approach is fine.
View ArticleImporting rsyslog json as metrics
Hi everyone, I'm trying to import the following type of log data as metrics (extract shown): Nov 14 03:23:42 hostname rsyslogd-pstats:{ "name": "global", "origin": "dynstats", "values": { } } Nov 14...
View ArticleHow to apply ingest time log to metric?
Hi All, Let's say I receive log data through TCP on UF, and I want to save the data in event index and metric index as well. I create new source type and new metric index in order to save the data into...
View ArticleAWS CWAgent are not getting to Splunk
Hi I have configured my input files as follows to get the cwagent custom metrics but metrics are not getting to Splunk server. Please help I am struggling with it....
View ArticleHow to join metric data
I have several types of metric data going into a metric index. One has 'username' and 'DimA' as dimensions, and 'ValueA' as the metric_name. The second type of metric data has 'DimA' as its dimension...
View ArticleSearch restrictions for metrics indexes
Hi community, I'm not able to set up a filter for metrics indexes in role definition. According to manuals it should be enough to set a filter like: dimension_name=value but it doesn't work: all...
View Articlemetrics statsd
Hi, I configured my statsd deamon and splunk to the same instance, I configured the stats deamon on the port 8125. When I try to configure the UDP input on splunk I received this message: Parameter...
View ArticleMetric Index problem with null values
I am running Splunk Enterprise 8.0.1 monitoring files with a universal forwarder and putting info from csv files into a metric index using logs to metrics through props.conf and transforms.conf. Most...
View ArticleHow to group multiple machines and user session time into a readable chart
Hi all! I am currently working on a dashboard metrics project that involves me attempting to create a dashboard panel that outputs the total number of hours / time spent on a set number of machines. In...
View ArticleHow to sent some metrics which are generated from splunk table to Grafana?
Hello, I have a Splunk query which generates some output so I want to send this output to Grafana/premethes. So what are the steps to be followed to achieve this?
View ArticleAre Splunk-metrics needed to search logs for pods?
Hi, When I perform any search in Splunk, the left side has Interesting Fields and Selected fields showing a list of the attributes returned. If I select pod from the Selected fields (currently showing...
View ArticleBase Searches for Dashboards using Splunk Metrics
Hi all, My team recently got metric data into Splunk and I created several dashboards with various drop down tokens for metric names as well as host. My next step was to try and create a logical base...
View ArticleSingle Value Panel on absolute metric resets to 0
Apologies in advance if I'm mixing some terminology. I'm relatively new to Splunk. I'm building a Splunk app to monitor our product, [Mattermost](https://mattermost.com/). We expose Prometheus style...
View Articlelog to metric from the output of a script
we are utilizing log2metrics in the form of a script writes a csv file, then Splunk reads that csv file and converts it to metric format. I am wondering if we can forego the intermediary csv file and...
View ArticleHow to log to metric with unstructured data?
Hello Guru, I would like to do "log to metric" on unstructured data. Let's say the data is "access_combined.log". I would like to extract last 3 digit as "code" file name. On FW, inputs.conf...
View ArticleUsing a "numeric" type rather than a "string" type is recommended to avoid...
got this error on the search head, Please help us to resolve this .Thanks> Search peer xxxxxx has the following> message: The metric> value=0.00003393234971117585 provided> for >...
View ArticleError when testing out importing CSV data "metric value is not valid...".
I'm getting this error when testing out importing a metric from CSV data: The metric value= is not valid for source=pdi_kinesis.csv, sourcetype=kinesis_metrics_csv, index=dev_metrics. Metric event data...
View ArticleStatsd support for Timer metric type?
I see from the [documentation][1] that Splunk currently supports statsd metric types Gauge and Counter. Are there plans to support Timer in the near future? Is there a documented method for perhaps...
View Article