Getting Data In

Community Activity

Is there a way to use whitelist or blacklist within linux log files? Hi! from the documentation https://docs.splunk.com/Documentation/SplunkCloud/latest/Data/Whitelistorblacklistspecifi... by dieguiariel Path Finder in Getting Data In 06-05-2023 0 4	0	4
Why is interval not working on script? We're running a script that's used in the CiscoIPS app to pull event data from our IPS. Initially the interval was se... by hortonew Builder in Getting Data In 06-05-2023 0 8	0	8
How do I ship json file uusing HTTP Event Collector? I'm trying to shipa json data set, my code is working fine for file size less than 10kb, but is failing for higher fi... by eventcollector Loves-to-Learn in Getting Data In 06-05-2023 0 1	0	1
What is the best method to write all event to RFS with Ingest Actions? Our requirements are to have readily searchable data for 12 months and 'cold store' of data for an additional 18 mths... by dokaas_2 Communicator in Getting Data In 06-05-2023 0 3	0	3
How to install a remote app into a Splunk Search Head using REST API? I need to write a python script to install an app/add-on to the remote Splunk search head. The app file ".spl" and ".... by sibiv196 New Member in Getting Data In 06-05-2023 0 3	0	3
How can we read local data on HF and send them to indexers? Hello,Here is the deal, I am following this link to ingest cisco umbrella logs into splunk: https://support.umbrella.... by kaboom1 Explorer in Getting Data In 06-05-2023 0 7	0	7
How to remove unneeded data from imported logs on Splunk? Hi all .. I have syslog come from Forcepoint web proxy and the size of data is very huge, I analysis the data and fou... by alaa_ahmad Loves-to-Learn Everything in Getting Data In 06-05-2023 0 3	0	3
Where to implement Ingest Actions? In a recent "Splunk Enterprise 9.0 Data Administration" class, the documentation says that Ingest Actions should be i... by dokaas_2 Communicator in Getting Data In 06-04-2023 1 4	1	4
Why is btool command returning many duplicate events for props.conf? hi guys I am experiencing an odd behavior when using btool to troubleshoot some issues. When I run btool to get the l... by asimagu Builder in Getting Data In 06-02-2023 0 7	0	7
How to search for devices/servers not reporting to Splunk? I have two queries I want to merge and I need expert help. The first one returns reporting devices as good and non-re... by waJesu Path Finder in Getting Data In 06-02-2023 0 12	0	12
How to retrieve a file from sFTP and copy to Splunk folder? Hi, I have the system logs being dumped in the sFTP server and would like to access them and move to local folders in... by manojchacko78 Path Finder in Getting Data In 06-02-2023 0 4	0	4
What are Best practices for writing field extractors? Hello fellow Splunthusiasts! I have some applications running on classic VMs, I am happily splunking their logs and e... by eregon Path Finder in Getting Data In 06-02-2023 0 2	0	2
Where do I configure my various Splunk settings? I can never remember where I need to configure my various Splunk settings. Some need to be on the forwarder side, som... by s2_splunk Splunk Employee in Getting Data In 06-01-2023 1 10	1	10
Splunk OTEL Forwarder- Is there a values.yaml file that can be referenced? I'm trying to setup the splunk OTEL forwarder (https://github.com/signalfx/splunk-otel-collector) on an AKS cluster t... by splunkyj4040 New Member in Getting Data In 06-01-2023 0 0	0	0
Why is JSON parsing events inconsistently? Hello, I have an issue with the json data that is being ingested into Splunk using Universal Forwarder. Some times th... by LealP Explorer in Getting Data In 06-01-2023 0 5	0	5
Splunk Supporting Add-on for Active Directory Issue? Hi Team, Recently we got an requirement from our internal teams to ingest the Active Directory logs into Splunk. H... by anandhalagaras1 Contributor in Getting Data In 06-01-2023 0 7	0	7
How to get previous date values in the dashboard table apart from event data? i have data in the event with date field and while saving the same search in the dashboard studio table its giving p... by sekhar463 Path Finder in Getting Data In 06-01-2023 0 1	0	1
How to resolve Splunk sc4s server communication error with Splunk Cloud? Hi Folks, Getting error while run the # ./hwf-Splunk-Connect-for-Syslog.sh sc4s script curl: (3) Bad URL, colo... by deepakkushwaha Observer in Getting Data In 05-31-2023 0 2	0	2
Where can I locate Splunk Forwarder Previous Releases (Windows 2000)? Hi, I am in need for an older version of Splunk Universal Forwarder that works with Windows 2000.Before anyone asks, ... by damcooleapl Engager in Getting Data In 05-31-2023 0 1	0	1
Why is domain name wrong for MSAD:NT6:DNS? Hi all, We have enable windows DNS debug on our AD servers, but get in wrong domain names.I have tried on our SH two ... by janroc Explorer in Getting Data In 05-31-2023 0 7	0	7
Upgrade Multiple Splunk Instances on the Same VM Hello,I am running multiple Splunk instances on the same machine, located in /opt as follows:/opt/splunk1/opt/splunk2... by daniaabujuma Explorer in Getting Data In 05-31-2023 0 4	0	4
How to apply replicationblacklist for a particular app in distsearch.conf? On my replication bundle I have a whole list of unwanted files that exists from a particular App "XYZ" which are as s... by pavanae Builder in Getting Data In 05-30-2023 0 9	0	9
Can we ingest logs from Azure Log Analytics into Splunk through event hooks? Hi Folks, Can we ingest logs from Azure Log Analytics into Splunk through event hooks?Thanks by mukhan2 New Member in Getting Data In 05-30-2023 0 1	0	1
How to stop data ingestion to Splunk permanently? We have an Splunk architecture with about 7 indexers, 3 search heads, 2 Heavy forwarders and a deployment server. We... by Khalid Engager in Getting Data In 05-30-2023 0 2	0	2
Questions on the nature of data collection in Splunk I am rather new to Splunk so far having come from previously using Event Sentry for a small offline network of VM bas... by Cehunter New Member in Getting Data In 05-30-2023 0 4	0	4