splunk
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| splunk [2024/01/11 09:40] – [Universal Forwarder] baumi | splunk [2024/01/11 09:41] (current) – baumi | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| - | ====== Splunk ====== | + | ====== Splunk |
| - | ===== Queries ===== | + | |
| - | ==== Count Events per Index ==== | + | |
| - | < | + | |
| - | | tstats count WHERE index=* OR index=_* by index | + | |
| - | </ | + | |
| - | ==== List Indexes ==== | + | |
| - | < | + | |
| - | | eventcount summarize=false index=* | dedup index | fields index | + | |
| - | </ | + | |
| - | + | ||
| - | ===== Installation on Linux ===== | + | |
| ==== Install Indexer / Heavy Forwarder ==== | ==== Install Indexer / Heavy Forwarder ==== | ||
| Line 65: | Line 54: | ||
| </ | </ | ||
| - | {{tag>kb splunk}} | + | {{tag> |
splunk.1704962408.txt.gz · Last modified: by baumi