Getting Data In

Community Activity

Help Getting CSV File in when time field is in Seconds Past Midnight I need help with loading CSV files into Splunk with the event time recorded as seconds past midnight instead of HH:MM... by edgarrity Path Finder in Getting Data In 07-06-2022 1 2	1	2
Why am I receiving this Indexer error message? On search peer, error: Error [00000010] Instance name "" Search head's authentication credentials rejected by peer. T... by myskyvideo Explorer in Getting Data In 07-06-2022 0 2	0	2
Issue Parsing Windows DNS Logs Hoping someone can help here.... We are currently running DNS services on our Windows Active Directory servers (we do... by qcjacobo2577 Path Finder in Getting Data In 07-06-2022 0 18	0	18
How to identify user activities login / logout (reason to logout)? Hi Team, I am a learner, so want to know about identifying the session login / logout time periods of an users and re... by godaba Observer in Getting Data In 07-06-2022 0 6	0	6
Why is my Wineventlog input stanza blacklist not working? HiI want to filter wineventlogs on universal forwarder with blacklist config. But It doesn't work as described in the... by batabay Path Finder in Getting Data In 07-05-2022 0 2	0	2
Why am I getting error: Incorrect sourcetype for windows logs Hello experts, I have recently onboarded around 300 windows devices. I have followed the onboarding guide and getting... by bbiswabhusan Explorer in Getting Data In 07-05-2022 0 8	0	8
How to truncate the entire event to a max number of characters? Hi folks, I'm trying to see how I can truncate the entire event to a max number of characters. So basically, if this... by skirven Communicator in Getting Data In 07-05-2022 0 3	0	3
Is heavy forwarder required for masking data in Splunk Cloud? Currently we use splunk cloud. I've added the following into the advanced section of the "Edit Source Type" to mask ... by ballen1 Explorer in Getting Data In 07-05-2022 0 6	0	6
Transforms.conf to reroute logs to different index. Hello community, I am trying to "reroute" specific logs (based on Regex match) to a different index. This is done on... by Habanero Explorer in Getting Data In 07-05-2022 0 4	0	4
Unable to get timestamp for Fortigate logs I have an indexer cluster and a search head environment. I've deployed the Splunk_TA_fortinet_fortigate app on both t... by scottsavareseat Path Finder in Getting Data In 07-05-2022 0 14	0	14
How to check traffic volume per heavy forwarder? I plan to calculate the traffic volume in GB across all our HFs. Need this to ensure check which HF is getting max tr... by hkumar26 New Member in Getting Data In 07-05-2022 0 4	0	4
Data Stream Processor in Splunk Cloud Hi All,Our Search heads are with Splunk Cloud version 8.2.2203.2 and there is a requirement from our application team... by anandhalagaras1 Contributor in Getting Data In 07-05-2022 0 0	0	0
How to filter input netflow data? Hello I am setting up netflow ticket collection on splunk. I am a very occasional user, and I come to you ask help. W... by yoan Explorer in Getting Data In 07-03-2022 0 0	0	0
How to send log file from switch/router directly to Splunk? Hello Splunkers, Is a splunk forwarder required to send data to splunk from a switch or router? Can I configure the t... by eholz1 Builder in Getting Data In 07-03-2022 0 4	0	4
How would I know my Linux and Windows machine have UF/HF installed on them? Hello, How would I know my Linux and Windows machine have UF/HF installed on them? One of them is installed in my mac... by SplunkDash Motivator in Getting Data In 07-02-2022 0 8	0	8
Are there any ways we can hide (encrypt) the USERNAME and PASSWORD in our REST API? Hello, Are there any ways we can hide (encrypt) the USERNAME and PASSWORD in our REST API> The main reason of that ou... by SplunkDash Motivator in Getting Data In 07-02-2022 0 7	0	7
Is there an add-on for Cisco VTC? Does splunk have an add on for CISCO VTC devices. I am getting logs but information is not human readable by EC_589_CA New Member in Getting Data In 07-01-2022 0 1	0	1
Can I use props.conf to parse logfile with some XML entries instead of manually? Hello.i've been looking around a bit but it appears my google-fu isnt up to snuff for this problem.i'm wondering how ... by Sir_Redan Explorer in Getting Data In 07-01-2022 0 1	0	1
Why is there an issue with Sourcetype Log2jmetrics_json? Hello, We are onboarding json formatted data and the data is written to a file on a server using a process called Pe... by arunsoni Explorer in Getting Data In 07-01-2022 0 0	0	0
How to find difference in JSON file as in given below? Hi,Thanks in advanceBelow events is in splunk .We have two repos in git 1. AAA 2.BBB.When ever the repos will replica... by karthi2809 Builder in Getting Data In 07-01-2022 0 1	0	1
Any ideas on how I can exclude the diagnostic file from sourcetype a but then include in sourcetype b? I have 2 files I want to monitor for in the same directory with 2 different sourcetypes. My issue is both files are b... by jeisonrosado Loves-to-Learn in Getting Data In 07-01-2022 0 2	0	2
Why is powershell scripted Input via universal forwarder not being indexed? The below setup doesn't appear to index the script's output and I can't figure out why. Even the basic one-liner exa... by wsgr_mccurity Loves-to-Learn Lots in Getting Data In 07-01-2022 0 7	0	7
How best to ingest SECURE TCP (Encrypted Syslog) with AirWatch? Are there any recommendations on how best to ingest TLS encrypted syslog from AirWatch Cloud Console? The only setti... by banjo5 Loves-to-Learn in Getting Data In 06-30-2022 0 2	0	2
Network Resolution (DNS) - Could not construct lookups- How to resolve errors? Hi All, I have recently ingested Cisco Umbrella logs into Splunk Cloud (8.1.2) and everything seems to be working fin... by lznger88_2 Path Finder in Getting Data In 06-30-2022 0 1	0	1
Why is heavy forwarder not sending metrics data? Hello  I'm having trouble with metric data not being sent from our HF to our Enterprise deployment.I'll add a diagra... by MaorMagori Explorer in Getting Data In 06-30-2022 0 3	0	3