When executing a query via the splunk SDK, apparently the results are clipped after 100 entries. How to get around this limit? I tried: <pre class="prettyprint"><code>>job = service.jobs.create(qstring,max_count=0, max_time=0, count=10000) >while not job.is_ready(): time.sleep(1) >out = list(results.ResultsReader(job.results())) >print(len(out)) 100 </code></pre> but the same query in the splunk web interface produces over 100 lines of results.

Try job.results(count=0) count=0 means no limit.

How do I evade the limit of 100 entries in python splunk query

Tags:

python

splunk

When executing a query via the splunk SDK, apparently the results are clipped after 100 entries. How to get around this limit?

I tried:

>job = service.jobs.create(qstring,max_count=0, max_time=0, count=10000)
>while not job.is_ready():
    time.sleep(1)
>out = list(results.ResultsReader(job.results()))
>print(len(out))
100

but the same query in the splunk web interface produces over 100 lines of results.

801

asked Sep 30 '22 05:09

mdurant

1 Answers

Try job.results(count=0) count=0 means no limit.

answered Oct 04 '22 04:10

AEM

Recent Activity
Apple Pay - authorize.net returns error 153 only when live, sandbox works
How to continue cursor loop even error occured in the loop
python find all neighbours of a given node in a list of lists
Fatal error: Call to a member function setColumn() on a non-object in Magento
Count how many of each value from a field with MySQL and PHP
Python 32-bit development on 64-bit Windows [closed]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With