All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

how can capture smtp by splunk stream

satorn_ja
New Member
‎06-05-2015 02:14 AM

I set up my server to be mail server, splunk search head, splunk indexer and splunk TA-stream.
After installation i enable smtp on stream config page then try to send/receive e-mail.
I use "source=stream*" on search page, There are no any result on "sourcetyp=stream:smtp"

Tags (1)
0 Karma
Reply

vshcherbakov_sp
Splunk Employee
Splunk Employee
‎06-05-2015 09:12 AM

Hi satorn_ja,

Did you check if the Wire Data Input is enabled/working on your server? When you install splunk_app_stream, it drops Splunk_TA_stream on your server, but doesn't enable it by default. You can check status/enable it if you to Settings->Data Inputs -> Wire Data.

Reply
Get Updates on the Splunk Community!

Video | Welcome Back to Smartness, Pedro

Remember Splunk Community member, Pedro Borges? If you tuned into Episode 2 of our Smartness interview series, ...

Detector Best Practices: Static Thresholds

Introduction In observability monitoring, static thresholds are used to monitor fixed, known values within ...

Expert Tips from Splunk Education, Observability in Action, Plus More New Articles on ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...