splunk
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| splunk [2024/01/11 09:33] – baumi | splunk [2024/01/11 09:41] (current) – baumi | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| - | ====== Splunk ====== | + | ====== Splunk |
| - | ===== Queries ===== | + | |
| - | ### Count Events per Index | + | |
| - | | tstats count WHERE index=* OR index=_* by index | + | |
| - | + | ||
| - | ### List Indexes | + | |
| - | | eventcount summarize=false index=* | dedup index | fields index | + | |
| - | + | ||
| - | + | ||
| - | ===== Installation on Linux ===== | + | |
| ==== Install Indexer / Heavy Forwarder ==== | ==== Install Indexer / Heavy Forwarder ==== | ||
| Line 63: | Line 54: | ||
| </ | </ | ||
| - | {{tag> | + | {{tag>kb linux splunk}} |
splunk.1704962015.txt.gz · Last modified: by baumi