Getting Data In

Community Activity

How to calculate Percentage and Percent difference week by week? Hi community, I am stuck on a problem where i have to calculate percentage and Percent Difference. I have 3 column... by wanda619 Path Finder in Getting Data In 08-02-2022 0 0	0	0
Ignoring path="x" due to: Bug: tried to check/configure STData processing but have no pending metadata. Hello Splunkers!Receiving the below error under splunkd.log for the UFs 08-02-2022 12:41:53.695 +0200 ERROR TailReade... by sarahnazzar Explorer in Getting Data In 08-02-2022 0 0	0	0
How do I apply regex to filter the events in the logs? Hi , I have logs with below format X.X.X.X. - - [02/Aug/2022:10:31:18 +0200] "GET /api/mc/v0.1/agendas/view/backgrou... by deepthi5 Path Finder in Getting Data In 08-02-2022 0 1	0	1
Help with search query i have a list of string lets say "abc" "bcd" "def" "efg" "fgh". I want to search each of these string against a quer... by avneet26 Engager in Getting Data In 08-02-2022 0 1	0	1
eStreamer is sending about 12 logs per minute and each log is about 30 mg- How can I reduce the number and size of logs? eStreamer sending about 12 logs per minute and each log is about 30 mg this is causing an issue with the license cons... by ajromero Path Finder in Getting Data In 08-01-2022 0 0	0	0
Are there any good/recent guides on setting up Sonicwall reporting? Hello, I have a Sonicwall TZ600 with both Syslog on 514 and log autmation over to an ftp folder on the Splunk server.... by jk485767 New Member in Getting Data In 08-01-2022 0 0	0	0
Help with rex- How do separate this event that came at the same time but different values? I have an event that came in the same time but have different data values that I need to separate. Example _timeexamp... by Italy1358 Path Finder in Getting Data In 08-01-2022 0 1	0	1
Help with Field Extraction from raw data Below is the sample input for my search BusinessIdentifier : 09 ***** MessageIdentifier : 3308b7dd-826c-4e98-8511-6... by yuvasree Explorer in Getting Data In 08-01-2022 0 1	0	1
How to monitor SFTP logs on windows server using Splunk Stream? Hi All, I'm trying to get the SFTP network data protocol logs from an SFTP server (windows server) that has a univers... by muradgh Path Finder in Getting Data In 08-01-2022 0 7	0	7
Config Files location where will i find props.conf, transforms.conf, and fields.conf. in my windows server? by vaibhavbeohar Path Finder in Getting Data In 07-29-2022 2 4	2	4
Why does event timestamp appear AFTER another date? This is my example log file: -- Daily Prod Started 7/28/2022 12:36:05 PM 0.762 sec -- BegMo='06/01/2022' 7/28/2022 12... by jmgilpin New Member in Getting Data In 07-29-2022 0 6	0	6
Can we have one connect to Azure Commercial while the other connects to Azure Government event hubs? I have been asked to check with Splunk Support on whether we can run 2 different Splunk add-ins for "Splunk Add-on fo... by HathMH Path Finder in Getting Data In 07-29-2022 0 1	0	1
How to upload CSV from UI? Hi All, We have a requirement where the end user would be uploading CSV to our HF, and from there, jobs would proce... by ayush1906 Path Finder in Getting Data In 07-29-2022 0 3	0	3
Getting Cisco Ironport ESA data into the Common Information Model I am having a tough time understanding how anyone is getting Cisco Ironport ESA data to map to the CIM for use in thi... by kalifehj Explorer in Getting Data In 07-28-2022 2 13	2	13
Why is Dropdown in Dashboard Only Showing One Word Results? Hello, Anyone have any idea why a dropdown filter would only show results for one word field result? I need the dropd... by ryanadamski Engager in Getting Data In 07-28-2022 0 2	0	2
How to send OCI (Oracle Cloud) Logs to Splunk (On-Prem)? Are there any best practices with respect to sending OCI GovCloud logs over to Splunk? We're primarily planning to ge... by adnankhan5133 Communicator in Getting Data In 07-27-2022 0 1	0	1
How to exclude private ip address range based on the result of "rex max_match" I run this query to extract all IP address from the events. There are multi ip based on one event.index=*\| rex max_ma... by haiweichen Explorer in Getting Data In 07-27-2022 0 2	0	2
How to install Splunk Universal Forwarder on multiple servers? Hi Whats the best way to install Splunk Universal Forwarder on more than 100 servers without installing on each one... by kiran331 Builder in Getting Data In 07-27-2022 0 8	0	8
How to extract timestamp in multiline event? Hi all, can somebody please give me a hand w/ this. I would like to extract the timestamp from an Event like this: ... by zapping575 Path Finder in Getting Data In 07-27-2022 0 5	0	5
Which endpoint can be used to retrieve splunk instance version? Hi Guys, which endpoint should I use to get the version of Splunk except /server/info.I don't want to use /server/inf... by bhargav_11 Splunk Employee in Getting Data In 07-27-2022 0 0	0	0
How to override source from raw data while indexing in splunk? For example below is my raw data in sample.log file. This is a \|AWS\| test log testing. The source of this file is op... by mitali Explorer in Getting Data In 07-27-2022 0 5	0	5
Where can I find the host for HEC URI? This is probably a stupid question where can I find the <host> for the HEC URI <protocol>://<host>:<port>/<endpoint>... by adasteph123 New Member in Getting Data In 07-26-2022 0 1	0	1
How to set up an Email Report after Alert? I would like to have a report emailed to me a few minutes after an alert goes off. While the alert can include the r... by MScottFoley Path Finder in Getting Data In 07-26-2022 0 0	0	0
Is it possible to send metrics to event index? Hello,It is possible to send metrics to event index?For instance indexing df_metric from Splunk_TA_nixThanks. by splunkreal Motivator in Getting Data In 07-26-2022 0 2	0	2
Why am I Unable to fetch Prometheus metrics into Splunk? I have used the "Prometheus Metrics for Splunk" plugin from the Splunk Apps to get data from the Prometheus remote wr... by TejrajGhadge Engager in Getting Data In 07-25-2022 0 3	0	3