Getting Data In

Community Activity

How can we send wineventlog data to the on-perm cluster and to the cloud? We would like to send our wineventlog data to the on-perm cluster as well as to the cloud.How can we do that? we can ... by danielbb Motivator in Getting Data In 05-25-2022 0 4	0	4
Compatible commands with Summary Index- Why aren't stats and chart command working? Hi All,I have created a summary index . I am making use of "sistats count by <fields>" to populate all the fields req... by Poojitha Communicator in Getting Data In 05-25-2022 0 1	0	1
What does eliminated_buckets mean in splunk index=_internal mean in Splunk? Hi All,what does eliminated_buckets mean in splunk index=_internal <sourcetype> mean in splunk ?Regards,NVP by Poojitha Communicator in Getting Data In 05-24-2022 0 1	0	1
How to blacklist inputs.conf? Hello, We have a rather noisy agent that is logging about 19GB of data daily. How can I filter the following from th... by garrywilmeth Explorer in Getting Data In 05-24-2022 1 5	1	5
python path in script Hello colleaguesI have a python file. which I add to Data inputs -> scriptSet the interval, set up, the file itself w... by gitingua Communicator in Getting Data In 05-24-2022 0 6	0	6
Disk space was full need to delete the data ? Hello,I am facing disk space issue in my Splunk so decided to delete the unwanted data as it is test environment, whi... by naveenyadav99 Explorer in Getting Data In 05-24-2022 0 1	0	1
Why is Nullqueue not working? This should be pretty easy but not sure why events are still coming in. We have hosts set up to send to multiple Splu... by johnansett Communicator in Getting Data In 05-23-2022 0 5	0	5
Why is there issue with Universal Forwarder forwarding logs to index? Hi All,I have installed splunk UF on windows . I have one static log file in system (json) and that need to be monit... by Poojitha Communicator in Getting Data In 05-23-2022 0 8	0	8
Are sourcetype names case-sensitive? Yet another case-sensitivity question: are sourcetype names case-sensitive? by Justin_Grant Contributor in Getting Data In 05-23-2022 0 6	0	6
How to provide a valid start time for the Tenable add-on input? Hi. I'm trying to add a new input with the Tenable add-on: https://splunkbase.splunk.com/app/4060/ When adding a new ... by hettervik Builder in Getting Data In 05-23-2022 0 6	0	6
Would it be any issues for Splunk indexer/UF to handle this large size of TRUNCATE value or event size? Hello, I have a source file with a very large event size as I require to use TRUNCATE=1000000 in my props. Do you thi... by SplunkDash Motivator in Getting Data In 05-23-2022 0 3	0	3
Sourcefire Encore data ingestion issue Hi All,We have recently upgraded from 7.2.6 to 8.1.3 Splunk and since then, we have been having issues with Sourcefir... by vik_splunk Communicator in Getting Data In 05-23-2022 0 36	0	36
Why is Windows event monitoring blacklist ignored? Hello there. I have this stanza configured for event logs on the Domain Controllers: [WinEventLog://Security]disabled... by cmlombardo Path Finder in Getting Data In 05-23-2022 0 3	0	3
How to find a solution to not have duplicated logs? Hello there, The deal is that I have 2 forwarders that have exactly the same logs (I'm using 2 forwarders not to have... by aatik5u Path Finder in Getting Data In 05-22-2022 0 4	0	4
Splunk Add-on for Tenable: Security Center Logs Failed to Index On Splunk 6.6, most up-to-date Splunk Add-On for Tenable. Been using it successfully from around February 2017 til mi... by gworkun Explorer in Getting Data In 05-21-2022 0 6	0	6
How to forward events to syslog/nessus security center? Hello We want to forward all events to Nessus LCE Server (Nessus Security Center). Since we have all Splunk Servers d... by nicocin Path Finder in Getting Data In 05-21-2022 0 2	0	2
Configuring tenable Nessus with Splunk Enterprise Greetings Community, I am trying to integrate the Splunk Add-on tenable to collect scan details from Nessus. Unfotu... by Mystica856 Explorer in Getting Data In 05-21-2022 0 4	0	4
How to accomplish a manual nessus upload and parsing the fields? Hello, I am trying to upload Nessus data into Splunk by uploading the .nessus / CSV or html file. Using the API to co... by teubertg New Member in Getting Data In 05-21-2022 0 1	0	1
Changing CSV file header I'm working with a csv file with this headerFilenm,EIN,Status,Business Function,Maintained By, Region,Manufacturer Na... by jwhughes58 Contributor in Getting Data In 05-21-2022 0 1	0	1
Is it possible to run scripted input on the search peer? Is it possible to run scripted input on the search peer? Also, is it possible to ensure it runs from all search peers... by aa70627 Communicator in Getting Data In 05-20-2022 0 2	0	2
How to add setup parameters to a new shell input in the Splunk Add-on Builder? On the page "Configure data collection using a REST API call" there is a section about adding setup parameters. Howev... by hettervik Builder in Getting Data In 05-20-2022 0 0	0	0
How to create a table from key value pairs which are not always present? Hi everyone, I would like to extract a table. For instance: SOH is a special character Input id=1, message body= [35=... by MarietaO Engager in Getting Data In 05-20-2022 0 9	0	9
Help getting field extraction from information in field=source Hi All, I am ingesting some logs from Heavy Forwarder and then sending them to indexers. *Snippet from inputs.conf on... by harry17preet Explorer in Getting Data In 05-19-2022 0 8	0	8
I developed an application to process Nessus data for Splunk Hi everyone. I am not sure the right place to post this, but I figured an introduction wasn't a bad place to start. ... by wanderson7 Explorer in Getting Data In 05-19-2022 1 0	1	0
Splunk Add-On for Google Cloud Platform Data Routing Hello Splunkers, With most applications, inputs and outputs are handled by their respectively named config files. (in... by joshuasolman Loves-to-Learn Everything in Getting Data In 05-19-2022 0 0	0	0