Open pauljmelia opened 4 months ago
Index creation using default.yml is no longer working in splunk images > 9.0.7.
I'm running Splunk in Docker Desktop 4.27.2 on Windows 11.
The attached docker-compose and default files work perfectly in splunk 9.0.7
docker-compose.txt default.txt
as can be seen from this log file: splunkd.9.0.7.log
In 9.0.8 onwards the files in the various monitored folders are no longer picked up, i.e. they paths are listed in Settings -> Data Inputs -> Files & Directories, but the Number of Files is blank and the indices are not created at all.
Attached is a log from starting up the latest tag: splunkd.latest.log
Index creation using default.yml is no longer working in splunk images > 9.0.7.
I'm running Splunk in Docker Desktop 4.27.2 on Windows 11.
The attached docker-compose and default files work perfectly in splunk 9.0.7
docker-compose.txt default.txt
as can be seen from this log file: splunkd.9.0.7.log
In 9.0.8 onwards the files in the various monitored folders are no longer picked up, i.e. they paths are listed in Settings -> Data Inputs -> Files & Directories, but the Number of Files is blank and the indices are not created at all.
Attached is a log from starting up the latest tag: splunkd.latest.log