Getting Data In

Ask a Question

Discussions

Thread Info

Read from inputs.conf file

Hi there, I want to be able to allow a dashboard of my app read the hostname stored in inputs.conf, which is provid...

by Path Finder in

Getting data from dynamodb to Splunk

Hello, what is the best way to get data from dynamoDB to Splunk?

by Explorer in

onboarding azure signin logs to splunk

I want to onboard azure signin logs to my splunk. I installed MS azure add-on for splunk on one HF and completed the ...

by Engager in

Log Ingestion - Custom Log Source

Good morning everyone, I am trying to ingest a log that does not roll over after a new, only when the service t...

by Communicator in

Upload csv file with escaped quotes

Hello together, I have a csv file which looks like this: "Time";"Comment" "15:53:21";"Here stands something...

by New Member in

Monitoring inputs not parsing logs to indexers

Hello Team, As we are parsing logs from Linux machine to Splunk indexer via Splunk Universal Forwarder in Linux mac...

by Path Finder in

Nested if

Hi, In a field status contains two values one is failure and another is success. Where in failure it contains som...

by Engager in

Sourcetype and indexes

Hi I am trying to understand how indexes and sourcetype are defined. Let's say I have an app with a web component a...

by Engager in

Making HTTP get requests with splunk

How can i create a scheduled report that runs every hour and makes GET requests to fetch data from an open source. ...

by Explorer in

Kaspersky EDR Optimum and Kaspersky Sandbox integration with Splunk

Hello, Pls could you provide the integration steps for Kaspersky EDR Optimum and Kaspersky Sandbox with Splunk

by Path Finder in

Backfill Scripted Input Data

I'm running Splunk 8.2.2 in a docker container. I'm using a separate app with a scripted input to get data into Spl...

by Communicator in

how to anonymize and route specific events

I want to anonymize one sourcetype before routing it to 3rd party system with Syslog. what is the proper config for p...

by Path Finder in

Unable to import Windows Event logs

Hi, I'm new to Splunk and was unable to find an answer to this exact question so sorry if it has been asked before or...

by Observer in

How come my forwarders appear frozen and are unable to send data to the indexers?

We have a lot of forwarders, of universal forwarders and heavy forwarders mostly, in version 7.0.x, which are configu...

by Splunk Employee in

useACK problem from UF above version 7.1.4 causing stuck forwarder / stop sending data

Hello, we have problem with useACK, there are known bugs with our UF 7.3.4 : https://docs.splunk.com/Documentation/...

by Motivator in

Splunk monitoring Roxio Secure Burn logs

Hello, Roxio Secure Burn stores a history of its burn logs to C:\ProgramData\Roxio Log Files I have a report set up...

by New Member in

Input script processing time greater than trigger interval

I have a problem similar to this: Scripted Input timeout . In modular input, i use python script to collect data, a...

by Explorer in

How do I find a list of All UFs, HFs & versions please. Thank u in advance.

Need help on creating a list of all UFs, HFs, their versions please. We have them on Windows & RHEL boxes. Thank u

by Builder in

Multiple fields extraction

by Loves-to-Learn Everything in

How to convert alphnumeric values to numeric values

How to convert the alphnumeric values to numeric values, each time the length of the values changes. Can someon...

by Path Finder in

Forward syslog maintain the source IP

Hi All, i'm struggling with the syslog configuration to forward events and maintain the original source IP. By rs...

by Explorer in

Query regarding multiple universal forwarder

multiple UFs on single machine will be supported from Splunk.

by Explorer in

SSL Error installing Splunk Forwarder

Hi, I am trying to setup latest version Splunk Forwarder first time on a linux server. However, after exeuting belo...

by Explorer in

Fortinet filed extractions

Hi everyone, I'm getting probably an issue with the extraction of my Fortinet data. I have installed the following ...

by Path Finder in

JSON Key/Field Extraction

I have a json formatted output, which according to jsonlint.com is valid JSON.... but, am having problems extracting ...

by Explorer in

Get Updates on the Splunk Community!

Getting Data In

Discussions

Read from inputs.conf file

Getting data from dynamodb to Splunk

onboarding azure signin logs to splunk

Log Ingestion - Custom Log Source

Upload csv file with escaped quotes

Monitoring inputs not parsing logs to indexers

Nested if

Sourcetype and indexes

Making HTTP get requests with splunk

Kaspersky EDR Optimum and Kaspersky Sandbox integration with Splunk

Backfill Scripted Input Data

how to anonymize and route specific events

Unable to import Windows Event logs

How come my forwarders appear frozen and are unable to send data to the indexers?

useACK problem from UF above version 7.1.4 causing stuck forwarder / stop sending data

Splunk monitoring Roxio Secure Burn logs

Input script processing time greater than trigger interval

How do I find a list of All UFs, HFs & versions please. Thank u in advance.

Multiple fields extraction

How to convert alphnumeric values to numeric values

Forward syslog maintain the source IP

Query regarding multiple universal forwarder

SSL Error installing Splunk Forwarder

Fortinet filed extractions

JSON Key/Field Extraction

Earn a $35 Gift Card for Answering our Splunk Admins & App Developer Survey

Continuing Innovation & New Integrations Unlock Full Stack Observability For Your ...

Monitoring Amazon Elastic Kubernetes Service (EKS)

Configuring Splunk OTel Collector for Linux/Window...

Upload failed with ERROR: Read Timeout

Splunk DB connect to Splunk

incomplete field extraction

DB Connect SQL Procedures