cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
acavenago
Explorer
Member since: ‎08-31-2023
‎02-26-2024
Community Statistics
Posts 6
Solutions 0
Karma Given 2
Karma Received 0
Member Since ‎08-31-2023
Activity Feed
View All

Re: How to get Resource Usage information of Heavy...

by in Deployment Architecture
‎02-26-2024 09:17 AM
‎02-26-2024 09:17 AM
Hi @kiran_panchavat , thank you for all the information. I was already able to list HF info in MC/Forwarders menu. What I need is to have HF also listed in MC/Resource Usage, where right now I have only Cluster Manager and Indexers nodes.   Kind regards, Andrea   ... View more

How to get Resource Usage information of Heavy For...

by in Deployment Architecture
‎02-20-2024 02:45 AM
‎02-20-2024 02:45 AM
      Hello, I have a multi-site cluster at version 9.0.1, with several Indexers, SHs, and HF/UFs. The Monitoring Console is configured on the Cluster Manager, and "Forwarder Monitoring" is enabled, which allows me to see the status of the forwarders. What is missing is the possibility to select HF in the Resource Usage section of the Monitoring Console. They are not available. How can I get them to appear in Resource Usage in the Monitoring Console?   Thank you, Andrea ... View more
Labels

Re: Splunk Nodes Restart

by in Splunk Enterprise
‎12-01-2023 12:28 PM
‎12-01-2023 12:28 PM
Hi isoutamo, sorry for the dumb question, but I have to put only MN in maintenance mode or also the other nodes (except SH)? Do I have also to stop Splunk manually or it is automatically stopped during the OS shutdown?   Thank you, Andrea   ... View more

Re: Email Alerts

by in Alerting
‎12-01-2023 07:52 AM
‎12-01-2023 07:52 AM
Thank you @richgalloway  Is there a way to avoid losing alerts generated during the smtp server offline period?   Thank you, Andrea ... View more

Splunk Nodes Restart

by in Splunk Enterprise
‎12-01-2023 06:44 AM
‎12-01-2023 06:44 AM
  Hello, we need to patch the OS of our Splunk Enterprise cluster distributed on 2 sites, A & B. We will start the activity on site A, which contains one Deployer Server, two SH, one MN, three Indexer and three HF. Site B contains one SH, three Indexer and one HF and will be updated later. Considering that the patching of OS will require a restart of the nodes, can you please tell me Splunk Best Practice to restart the Splunk nodes? I'd start with the SH nodes then the Indexer nodes, Deployer, MN and HF. All one by one. Do I have to enable maintenance mode on each node, restart the node and disable maintenance mode, or is it sufficient to stop Splunk on each node and restart the machine? Thank you, Andrea ... View more
Labels

Email Alerts

by in Alerting
‎12-01-2023 05:55 AM
‎12-01-2023 05:55 AM
Hello, can you please tell me what happens to email alerts if the smtp used for email delivery is temporary offline? Is there a buffer where alerts are saved and then are sent once the smtp server becomes available again? Is there a link to Splunk documentation about that? Thank you, Andrea ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎02-26-2024 03:20 PM
Karma given to
View All