Getting Data In

Community Activity

Why is Microsoft Azure Add-on Not Pulling Logs? We're running Splunk 8.2.2 with the Microsoft Azure Add-on version 3.1.1. We have the add-on installed on a heavy fo... by pkohn117 Explorer in Getting Data In 04-12-2022 0 0	0	0
Log forwarding from HF to Cloud Hello, I am collecting logs from various endpoints via UFs into a Splunk HF. One of the data inputs is firewall logs ... by b_chris21 Communicator in Getting Data In 04-12-2022 0 1	0	1
Is there any way to find all the Splunk instances that has processed the event Please checkout the idea here (because I don't think currently it's possible with Splunk unless someone has some work... by VatsalJagani SplunkTrust in Getting Data In 04-12-2022 0 1	0	1
Adding additional fields at the Universal Forwarder: Why are apps are fighting over the _meta field? I have App_1 that is adding metadata in the inputs.conf file: ###### Forwarded WinEventLogs (WEF) ###### [WinEven... by oliverja Path Finder in Getting Data In 04-12-2022 0 10	0	10
How to optimize a heavy forwarder sending HEC data to index cluster? Hi I am running a heavy forwarder with HEC and it is sending data to 3 indexers. I am starting to read about ways to ... by robertlynch2020 Influencer in Getting Data In 04-12-2022 0 4	0	4
Why DBconnect inputs not detected after upgrade to 8.1 from 7.x? Hello All, We recently upgraded from 7.3. to 8.1. We had a few inputs in dbconnect that was upgraded from 3.1 to 3.8.... by secengineering Engager in Getting Data In 04-11-2022 0 0	0	0
Why am I getting an error in the HF logs and not able to see any latest events in the SH? Hi All, I am getting below error in the HF logs and not able to see any latest events in the SH. ERROR HttpInputDat... by thahir Contributor in Getting Data In 04-11-2022 0 0	0	0
Continuously updated log files are not being picked up by Splunk I have a set of long-running processes that are occasionally restarted. They generate a set of "heartbeat" events whe... by rchapman2x Explorer in Getting Data In 04-11-2022 0 1	0	1
Field extraction for custom waf log Hello everyone,I am struggling with extracting the fields of a custom WAF log file as there is no sourcetype that par... by b_chris21 Communicator in Getting Data In 04-11-2022 0 6	0	6
How to dynamically shrink hot/warm index size? Hello, Presently my hot/warm index occupies 50GB on disk (there are no limits specified in indexes.conf). I'd like to... by akazarov Path Finder in Getting Data In 04-11-2022 0 0	0	0
Why am I getting 404 on static files after having define root_endpoint in web.conf? Hello I've defined root_endpoint = /splunk in web.conf file. But now I'm getting 404 on /splunk/en-US/static/* files.... by nverducou New Member in Getting Data In 04-11-2022 0 3	0	3
How to change Time format in raw data to a readable format? Hi Team, I am getting date and time format as "Created_time =1649576166225" in raw log we have to convert. Please he... by splunkpri Explorer in Getting Data In 04-11-2022 0 4	0	4
Add-on GCP to ingest from Pub/Sub error 403- How do I fix? Dear Splunkers, I'm trying to get data from a Pub/Sub but i receive a 403 error. I configured the add-on in a HF, fol... by crazyTauron Engager in Getting Data In 04-11-2022 0 0	0	0
How to monitor the files under a path but not the details of each file? Hi All, Hope you all are doing well. Recently i was ingesting data to Splunk from a server and i had to get the fil... by niks987 Explorer in Getting Data In 04-10-2022 0 5	0	5
How do I monitor Sage Accounting Software? I am trying to on board logs for Sage accounting software to Splunk, how do I go about it? I could not find any docum... by keen Loves-to-Learn Lots in Getting Data In 04-10-2022 0 0	0	0
Why is My automatic lookup not working with Searchhead cluster? I have an indexing cluster and searchhead cluster. I want to use a csv threat feeds to add IP reputation field using ... by aamer86 Path Finder in Getting Data In 04-09-2022 0 7	0	7
Why is Anonymize data not working? Hello, i am trying to anonymize data in forwarder using the below: The data AABC123456789012 needs to be transformed ... by vengisa Loves-to-Learn Lots in Getting Data In 04-08-2022 0 6	0	6
Create Windows UF Blacklist Literal Hyphen Character Hello, Many thanks in advance for taking the time to read/consider my question, it's always appreciated!I'm currentl... by cfloquet Path Finder in Getting Data In 04-08-2022 0 1	0	1
How to route window system logs to a different index Hey there, I have a windows forwarder sending the servers's application, system and security logs to the indexers. I ... by usup_rajbahak Path Finder in Getting Data In 04-08-2022 0 6	0	6
How to modify host and sourcetype at the same time When using HF to collect logs on the cloud，Because the add-on used cannot set host，So the host of the data is the nam... by legaldan Explorer in Getting Data In 04-08-2022 0 6	0	6
HttpPubSubConnection - Unable to parse message from PubSubSvr Can anyone help why this Warning message is coming in Splunkd log by Debottam New Member in Getting Data In 04-07-2022 0 1	0	1
Not able to get rid of EDT timezone using strftime command 2022-04-07 07:00:11.028-EDT, any suggestions? Not able to get rid of EDT timezone using strftime command 2022-04-07 07:00:11.028-EDT . Any suggestions by jimish Explorer in Getting Data In 04-07-2022 0 9	0	9
How to resolve "err=not_connected" error in Deployment Server configurations? Hi In the Deployment Server (DS): - I copied an app to the /opt/splunk/etc/deployment-apps/ In the Universal Forwa... by TiagoTLD1 Communicator in Getting Data In 04-07-2022 2 16	2	16
Is it possible to get all app insights data using data manager in Splunk cloud Victoria experience? Is it possible to get all app insights data using data manager in splunk cloud Victoria experience? by Vedhajanani Loves-to-Learn in Getting Data In 04-07-2022 0 0	0	0
Send Splunk Cloud Logs to s3 Archive after log retention in Splunk Cloud Hi All,I have to send Splunk Cloud logs to S3 buckets after the 90 days log retention in Splunk for audit purpose. Ca... by mthirumalareddy Explorer in Getting Data In 04-07-2022 0 1	0	1