Я новичок в Python и Spunk.
Я использую Spunk SDK для экспорта моего Spunk-запроса для получения данных.
Код:
import time
import splunklib.client as client
import splunklib.results as results
HOST = "iaasnxxxxxxx"
PORT = local port
USERNAME = "xxxx"
PASSWORD = "xxxx"
service = client.connect(
host=HOST,
port=PORT,
username=USERNAME,
password=PASSWORD)
query='index=* earliest=-5m | regex "(?i)\D(?:0[1-9]|[12]\d|3[01])([\/.-])(?:0[1-9]|1[1-9])\1(?:19)\d\d|(?:19)\d\d([\/.-])(?:0[1-9]|[12]\d|3[01])([\/.-])(?:0[1-9]|[12]\d|3[01])\D" | rex "(?i)(?<dob>(19\d\d([\/.-])\d\d([\/.-])\d{1,2})|(\d\d([\/.-])\d{1,2}([\/.-])19\d\d))"|search dob=* AND dob!="1969-12-31"| table dob _raw index host source'
while True:
rr = results.ResultsReader(service.jobs.export(query))
for result in rr:
print(result)
Я получил ошибку HTTPError: HTTP 400 Bad Request -- Search Factory: Unknown search command 'index'.
Опять же, большое спасибо за помощь.