![]() Exports data out of your Splunk server into /tmp/apache_raw_404_logs. Sets the maintenance mode on peers in indexer clustering. splunk edit monitor /var/log -follow-only trueġ. Edits monitored directory inputs in /var/log and only reads from the end of this file. splunk edit cluster-config -mode peer -site site2Ģ. Edits the current clustering configuration. Displays status information for the unix app.Īpp, cluster-config, shcluster-config, exec, index, licenser-localpeer, licenser-groups, monitor, saved-search, search-server, tcp, udp, userġ. Displays status information, such as enabled/disabled, for all apps.Ģ. Must be invoked on the manager node.Īpp, boot-start, deploy-client, deploy-server, dist-search, jobs, listen, local-indexġ. Disables the maintenance mode on peers in indexer clustering. splunk create app myNewApp -template sample_appĪpp, boot-start, deploy-client, deploy-server, dist-search, index, listen, local-index, maintenance-mode, perfmon, webserver, web-ssl, wmiġ. Run splunk envvars to see which environment variables are set. Runs the chosen command from the $SPLUNK_HOME/bin directory with the environment variables set. Displays the contents in the $SPLUNK_HOME/bin directory.Ģ. splunk cluster-manager-redundancy -switch-mode standbyītprobe, classify, locktest, locktool, pcregextest, searchtest, signtool, toCsv, toSrs, tsidxprobe, walklexġ. Consequently, another, currently standby cluster manager gets switched to active automatically. Switches HA mode of a cluster manager from active to standby. splunk cluster-manager-redundancy -switch-mode activeģ. Switches HA mode of a cluster manager from standby to active. ![]() splunk cluster-manager-redundancy -show-statusĢ. ![]() Shows status of all the cluster managers in redundancy mode. globaldata refers to host tags and source type aliases.ġ. eventdata refers to exported events indexed as raw log files.Ģ. splunk check-integrity -bucketPath $SPLUNK_HOME/var/lib/splunk/defaultdb/db/ Īll, eventdata, globaldata, inputdata, userdata, kvstoreġ. Verifies the integrity of a bucket with the optional parameter verbose. splunk check-integrity -index $SPLUNK_HOME/var/lib/splunk/defaultdb/ Ģ. Verifies the integrity of an index with the optional parameter verbose. For shcluster-bundle examples, see Deploy a configuration bundle in the Distributed Search manual.ġ. splunk apply cluster-bundle -skip-validationģ. Skip-validation is an optional argument to skip bundle validation on the indexer cluster manager and peers. Makes validated bundle active on peers.Ģ. splunk anonymize file -source /tmp/messages -name_terms $SPLUNK_HOME/bin/Mynames.txtġ. Anonymizes Mynames.txt using name-terms, a file containing a list of common English personal names. splunk anonymize file -source /tmp/messagesĢ. Replaces identifying data, such as usernames and IP addresses, in the file located at /tmp/messages. splunk add cluster-manager -secret testsecret -multisite falseġ. Adds another indexer cluster manager node to the list of instances the search head searches across. Adds monitor directory and file inputs to source /var/log.Ģ. If you're looking for additional uses or options for a CLI command object, review the REST API Reference Manual and search for the object name.Įxec, forward-server, index, licenser-pools, licenses, manager, monitor, oneshot, saved-search, search-server, tcp, udp, userġ. Most administrative CLI commands are offered as an alternative interface to the Splunk Enterprise REST API without the need for the curl command. An object is something you perform an action on. See the "Universal parameters" section of Get help with the CLI.Ī command is an action that you can perform.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |