This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
NetWitness Discussions

Slow queries

Go to solution
Anonymous
Not applicable

‎2013-11-19 09:55 AM

I know that SA is suppose to be fast but I seem to be doing a lot of waiting. 

 

When I try to query for 45 minutes worth of log data in the investigation module for one device type it is taking forever to load. 

 

The type I am trying to query is rhlinux and I only have 580k events in that one section of time, is there a reason it is taking so long to query?  20+min. 

0 Likes
1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
Anonymous
Not applicable

‎2013-11-19 07:25 PM

Hi Sean. There could be an issue with your index settings or the type of query you are trying to do. I would suggest getting in touch with the SA Tech Support crew who can review your settings and make recommendations to help you.

View solution in original post

0 Likes
1 REPLY 1

Go to solution
Anonymous
Not applicable

‎2013-11-19 07:25 PM

Hi Sean. There could be an issue with your index settings or the type of query you are trying to do. I would suggest getting in touch with the SA Tech Support crew who can review your settings and make recommendations to help you.

0 Likes
© 2022 RSA Security LLC or its affiliates. All rights reserved.