Getting Data In

Community Activity

How to exclude a specific file? I'm trying to exclude a specific file called catalina.out in /var/log/tomcat9/ from being processed by Splunk. The f... by balcv Contributor in Getting Data In 11-04-2022 0 3	0	3
Is there a way to get the automatically assigned, with a token or extracted from the default fields? HI,I try to figure out a way to create a new field on a heavy forwarder. I want to add the field "splunk_parser" to e... by dkeck Influencer in Getting Data In 11-04-2022 0 6	0	6
Why are events indexing with the wrong time stamp? Hi,We have a custom TA to collect some logs from a Windows Server.This morning I just noticed that the Splunk is actu... by freddy_Guo Path Finder in Getting Data In 11-04-2022 0 8	0	8
Why are events ingested using the journald modular input truncated at 4088 bytes? I'm pulling in events from the journal of a number of Linux hosts using the journald modular input. I'm seeing trunca... by chris_barrett SplunkTrust in Getting Data In 11-03-2022 0 0	0	0
Looking to collect latency info from Cisco devices? Hello, Can anyone pls help me with the cisco add-on for splunk that collects latency info from cisco devices.I am see... by Roy_9 Motivator in Getting Data In 11-03-2022 0 0	0	0
Cisco/OpenDNS Umbrella/Investigate: so many apps, so many options ... What is best? Here is what is on Splunkbase (maybe others, too):Umbrella Add-on for Splunk Enterprise: https://apps.splunk.com/app/... by woodcock Esteemed Legend in Getting Data In 11-03-2022 2 1	2	1
How to change the time field value /date(1548574937484) to human readable format ? by balu1211 Path Finder in Getting Data In 11-03-2022 0 5	0	5
Changing date format and find date difference in days? Hi , I want to change the date format and find difference in days from current day . Date format i have now is , Tim... by dtccsundar Path Finder in Getting Data In 11-03-2022 0 2	0	2
Not able to upload a file to splunk, getting oneshotwriter error? Hi Team,I am not able to upload a local log file to my local Splunk getting below error in splunkd.logOneShotWriter f... by Harish Observer in Getting Data In 11-03-2022 0 3	0	3
How do I convert "2022-11-01T23:56:07UTC" into MET in datetime.xml? Hi,I searched a lot and found no answer.I have data with the above timestamp and I want to convert it into local time... by vgrote Path Finder in Getting Data In 11-03-2022 0 2	0	2
Two unique sourcetypes in directory with hundreds of logs Hello! I am pulling in logs from a server, there are about 500 logs in the directory. We want to bring in all 498 o... by johnansett Communicator in Getting Data In 11-02-2022 0 2	0	2
What is the best way to send Mulesoft logs to Splunk? Hi Splunkers, I'm searching about the best way to send Mulesoft logs and events.Here on community I found What is the... by SplunkExplorer Contributor in Getting Data In 11-02-2022 1 1	1	1
Installing of Splunk Universal Forward ver 9.0.0 on AIX 7.1 and 7.2 - The splunkd daemon dies seconds after startup I have been experiencing issues with getting the Splunk Universal Forwarder agent installed on AIX 7.1 and 7.2 server... by Mel-at-CHC New Member in Getting Data In 11-02-2022 0 1	0	1
What is the best way to find log patterns in Splunk consuming more bandwidth? Hi All, I am looking for the best way to find log patterns in splunk consuming more bandwidth so that we can reduce t... by manish_singh_77 Builder in Getting Data In 11-02-2022 0 5	0	5
Why are logs are not generating? I am working on an app by using the splunk python SDK and trying to generate logs using logging library. I used all l... by ServiceNow_SecO Observer in Getting Data In 11-02-2022 0 0	0	0
forwarding baked HEC traffic between two Splunk Entreprise Instances Hello,I would like to forward data between two splunk instances in clear text. For that I use HEC. This is my outputs... by Brainizer Explorer in Getting Data In 11-02-2022 0 0	0	0
Azure Event Hub not seeing logs in Splunk SH? Hi all, We have successfully registered and connected a new Azure Event Hub namespace via the 'Splunk Add-on for Micr... by DanAlexander Communicator in Getting Data In 11-02-2022 0 0	0	0
How can I force a transforms.conf to also run on data onboarded with collect? I'm trying to make a test with data that I onboarded with the collect command. What I see is that when I insert an ev... by sboogaar Path Finder in Getting Data In 11-01-2022 0 1	0	1
Why I'm unable to add new DCN to Splunk Scheduler? Hi, I'm trying to get logs from a vCenter server using the DCN. On the Collection Configuration page, I'm trying to a... by ynag Explorer in Getting Data In 11-01-2022 0 3	0	3
What does Process %_Processor_Time greater than 100% mean? I have started collecting Process information on a virtual machine that has 1 processor. I am seeing %_Processor_Time... by wnyricsplunk Explorer in Getting Data In 11-01-2022 1 7	1	7
How to delete entire lookup table data? Hello all, I have created a ldap search query to load identity data. I want all existing lookup table entries to be d... by pdafale_avantor Engager in Getting Data In 11-01-2022 0 3	0	3
How to validate all the data from an indexer is uploaded to smart store? What is the best way to validate entire data from an indexer is uploaded to smart store? by gpradeepkumarre Engager in Getting Data In 10-31-2022 0 0	0	0
How to explain a variance in ingest volume? I am trying to understand what would cause a variance in the volume used in our quota vs the log size it is ingesting... by calvinmcelroy Path Finder in Getting Data In 10-31-2022 0 4	0	4
Does anyone have reference material on the inputs.conf for MAC OSs and how to get the events into Splunk? I'm a Windows guy working with Linux trying to get MAC OS events into Splunk. We don't have many MACs where I work, ... by dokaas_2 Communicator in Getting Data In 10-31-2022 0 4	0	4
How to send data to Splunk from Azure Event Hub? Hello there! I've been ingesting data from Azure Storage Explorer via the Splunk Add-On for Microsoft Cloud Services ... by pcontreras Explorer in Getting Data In 10-31-2022 1 1	1	1