Warning: file_get_contents(/data/phpspider/zhask/data//catemap/6/cplusplus/154.json): failed to open stream: No such file or directory in /data/phpspider/zhask/libs/function.php on line 167

Warning: Invalid argument supplied for foreach() in /data/phpspider/zhask/libs/tag.function.php on line 1116

Notice: Undefined index: in /data/phpspider/zhask/libs/function.php on line 180

Warning: array_chunk() expects parameter 1 to be array, null given in /data/phpspider/zhask/libs/function.php on line 181
Monitoring 查询要删除的被动主机?_Monitoring_Splunk - Fatal编程技术网
Fatal编程技术网
  • monitoring/
  • Monitoring 查询要删除的被动主机?

Monitoring 查询要删除的被动主机?

monitoring

Monitoring 查询要删除的被动主机?,monitoring,splunk,Monitoring,Splunk,有人能帮我删除splunk中的被动主机吗。我使用的查询是: | metadata type=hosts | sort recentTime | convert ctime(recentTime) as Latest 您应该将最近时间与当前时间进行比较,计算出差异,并将差异与阈值进行比较,以识别这些主机 查询示例: | metadata type=hosts | eval diff=now()-recentTime | eval threshold=3600 | where diff>th

有人能帮我删除splunk中的被动主机吗。我使用的查询是:

| metadata type=hosts
| sort recentTime
| convert ctime(recentTime) as Latest
您应该将最近时间与当前时间进行比较,计算出差异,并将差异与阈值进行比较,以识别这些主机

查询示例:

| metadata type=hosts | eval diff=now()-recentTime | eval threshold=3600 | where diff>threshold
注意:查询未经测试,但您应该了解