will be appreciated

Question

will be appreciated

DG · Answer

Windows Powershell gt Convertfrom Json ConvertFrom Json caller publish results go 168 err rpc error code = Unknown desc = submitting distributed query results failed to ingest result ingesting query kolide detail query network interface strconv Atoi parsing unknown invalid syntax errcode message method PublishResults reauth false results query name kolide label query 9 status 0 rows null query name kolide label query 6 status 0 rows 1 1 query name kolide detail query network interface status 0 rows address 172 31 31 171 broadcast 172 31 31 255 collisions 0 flags 69699 ibytes 566637713 idrops 0 ierrors 0 interface eth0 ipackets 410793 last change 1 link speed 0 mac 06 4a 24 ea 91 b0 mask 255 255 240 0 metric 0 mtu 9001 obytes 29204840 odrops 0 oerrors 0 opackets 121800 pci slot vif 0 point to point type unknown query name kolide detail query os version status 0 rows build codename bionic major 18 minor 4 name Ubuntu patch 0 platform ubuntu platform like debian version 18 04 4 LTS Bionic Beaver query name kolide detail query osquery flags status 0 rows name config refresh value 300 name distributed interval value 10 name logger tls period value 10 query name kolide detail query osquery info status 0 rows build distro centos7 build platform 1 config hash ca23eeb39a7191a39e45b26d43c771fd3700a9c8 config valid 1 extensions active instance id 2d802ca0 8bbb 4dde bef2 3aab5320495a pid 24928 platform mask 9 start time 1586726840 uuid 8f8bd4d8 a6be 4210 a533 6f22696be406 version 4 2 0 watcher 1 query name kolide detail query system info status 0 rows computer name ip 172 31 31 171 cpu brand Intel R Xeon R CPU E5 2676 v3 2 40GHz cpu logical cores 1 cpu microcode 0x43 cpu physical cores 1 cpu subtype 63 cpu type x86 64 hardware model hardware serial hardware vendor hardware version hostname ip 172 31 31 171 eu west 1 compute internal local hostname ip 172 31 31 171 eu west 1 compute internal physical memory 1031475200 uuid 8f8bd4d8 a6be 4210 a533 6f22696be406 query name kolide detail query uptime status 0 rows days 0 hours 15 minutes 11 seconds 45 total seconds 54705 severity info took 2 941317ms ts 2020 04 12T21 27 31 678535667Z uuid a457454b 8bba 479c b066 bb0a17aabe96 results

DG · Answer

Give query name status rows kolide label query 9 0 kolide label query 6 0 1=1 kolide detail query network interface 0 address=172 31 31 171 broadcast=172 31 31 255 collisions=0 flags= kolide detail query os version 0 build= codename=bionic major=18 minor=4 name=Ubuntu patch=0 pl kolide detail query osquery flags 0 name=config refresh value=300 name=distributed interval value= kolide detail query osquery info 0 build distro=centos7 build platform=1 config hash=ca23eeb39a7191a3 kolide detail query system info 0 computer name=ip 172 31 31 171 cpu brand=Intel R Xeon R CPU E5 26 kolide detail query uptime 0 days=0 hours=15 minutes=11 seconds=45 total seconds=54705

DG · Answer

Or perhaps build being Null

DG · Answer

build codename bionic major 18 minor 4 name Ubuntu patch 0 platform ubuntu platform like debian version 18 04 4 LTS Bionic Beaver

DG · Answer

So if it is really the error it says gt ingesting query kolide detail query network interface strconv Atoi parsing unknown Then thats the result of type unknown

DG · Answer

Most results i read like Issue 1521 which is the output instead of UNKNOWN say this was fixed in later versions

taurian007 · Answer

Yes I updated the kolide fleet to latest version and it is fixed now

zwass · Answer

Which version of Fleet were you using