This documentation does not apply to the most recent version of Splunk Stream™.
For documentation on the most recent version, go to the latest release.
Known issues
Known issues in Splunk App for Stream 6.6.2:
| Publication date | Issue number | Description |
|---|---|---|
| 2016-12-12 | STREAM-3494 | streamfwd symlink does not get installed on Linux 64-bit platforms. |
| 2016-11-10 | STREAM-2362 | False positive TOR classification |
| 2016-11-01 | STREAM-3441 | Splunk Stream version 6.6.2 is not compatible with Splunk Enterprise 6.3.x. |
| 2016-10-18 | STREAM-3408 | n the Configure Stream UI, some links to documentation are broken. |
| 2015-10-13 | STREAM-2447 | Events are created from TNS stream containing incorrect user field. |
| 2016-10-16 | STREAM-3363 | On Distributed Forwarder Management page, "Create new group" button does not work. |
| 2016-08-16 | STREAM-3274 | Aggregated events based on historical pcap files incorrectly get systime timestamp. |
| 2016-08-16 | STREAM-3250 | Negative phone home time appears in Stream Forwarders Status dashboard. |
| 2016-07-28 | STREAM-3211 | Unable to process pcap traffic using dedicated mode via independent streamfwd. |
| 2016-07-26 | STREAM-3193 | SmtpProtocolHandler does not concatenate content blocks. |
| 2016-07-25 | STREAM-3185 | RTP events missing timestamp for some data fields. |
| 2015-07-15 | STREAM-3168 | streamfwd -h does not list --iflist as an option. |
| 2015-06-28 | STREAM-3139 | set_permissions.sh script does not configure DPDK permissions properly. |
| 2016-06-10 | STREAM-3080 | Error logs lack detail on the actual error type. |
| 2016-06-02 | STREAM-3029 | When running splunk_app_stream in Splunk cloud, the app generates an incorrect curl command for independent stream forwarder installation. |
| 2016-05-05 | STREAM-2945 | Aggregation only picks the first value of a multi-value key field. |
| 2016-04-26 | STREAM-2918 | Problem with URL encoding of m_splunk_index and m_splunk_host. |
| 2015-03-04 | STREAM-1565 | SMTP does not extract multiple recipients properly when there is more than one recipient contained in the email. |
| 2015-03-04 | STREAM-1312 | Stream represents multi-part MIME messages incorrectly. |
| 2015-03-04 | STREAM-1311 | Stream does not consistently merge attributes extracted in chunks into a single term value. |
Last modified on 12 December, 2016
| Resolved issues | Credits |
This documentation applies to the following versions of Splunk Stream™: 6.6.2
Download manual
Feedback submitted, thanks!