Getting Data In

Getting Data In
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
Community Activity
ragonfly

Is it possible to get concat fields through db connect?

Hello. I need help with DB data input.Among the fields of the mariadb table, the field related to time is divided int...
by ragonfly New Member in Getting Data In 02-14-2022
0 1
0
1
srinivas_gowda

How to push the Japanese language in winevent log monitoring?

Hello all, I have a Japanese language windows server from which I am testing to push the data to Tier1 index. However...
by srinivas_gowda Path Finder in Getting Data In 02-14-2022
0 3
0
3
Satoru_Aoyagi

取得ログの一部が欠落する

ライセンスの利用状況を集計するため、FlexLMのログファイルを取り込んでいるのですが、一部の行が取り込まれない状態で原因究明にご助力頂けたら幸いです。ログ取得の意図としては下記記載のログ内容の"IN"、"OUT"行を行毎に1イベント...
by Satoru_Aoyagi New Member in Getting Data In 02-14-2022
0 0
0
0
Hemnaath

How to monitor a CSV files which is placed in a NFS file share?

Hi All, We have request from end user for monitoring a CSV files which are placed in the file share folder and there ...
by Hemnaath Motivator in Getting Data In 02-14-2022
0 2
0
2
rahul2gupta

Why are the logs not getting forwarded into the splunk instance via splunk forwarder?

Hi   We have installed Splunk universal forwarder on a remote server but logs are not getting forwarded to Indexer. I...
by rahul2gupta Path Finder in Getting Data In 02-14-2022
0 4
0
4
human96

Is it possible to set the certificate and private key for NICs with different FQDN?

In your environment, one Splunk server has two NICs, each There is a different FQDN. In this case, is it possible to ...
by human96 Communicator in Getting Data In 02-14-2022
0 3
0
3
blbr123

Splunk DB connect onboarding

Hi All,I have requirement to do splunk DB connect onboarding in a distributed environment, Do I need to install the s...
by blbr123 Path Finder in Getting Data In 02-14-2022
0 9
0
9
hank72

inputs.conf monitor question

Hi Community,I have a inputs.conf monitor that looks like this[monitor:///var/log/logfiles/.../app.log]index=englogss...
by hank72 Path Finder in Getting Data In 02-11-2022
0 2
0
2
EatMoreChicken

Where should I place temp files generated by my scripted input?

I made a custom TA in "/opt/splunk/etc/apps/myTA/". I created a script called "myTA/bin/scripts/pulldata.sh". My scri...
by EatMoreChicken Explorer in Getting Data In 02-11-2022
1 2
1
2
TrueMex

How to configure the Splunk universal forwarders on a Windows machine to send to an index that isn't the main?

Hi All, i am trying to configure the splunk universal forwarders on a windows machine to send to an index that isnt m...
by TrueMex New Member in Getting Data In 02-11-2022
0 10
0
10
test_accenture

How to Send LOG_TYPE data in Splunk using API python

I am new to Splunk and my use case is to send a file to Splunk and then Splunk will parse it. Can someone please help...
by test_accenture Loves-to-Learn in Getting Data In 02-10-2022
0 4
0
4
splunk4tg

Why are CIM Data tables not populating from main index?

Good morning to all, I have a newbie question. I know I’m missing something simple, wondering if someone could point ...
by splunk4tg New Member in Getting Data In 02-10-2022
0 2
0
2
daniel333

Event_breaker vs Line_breaker ?

All, Is there any reason my event_breaker stanza for my UF should be different from LINE_breaker line on my indexer...
by daniel333 Builder in Getting Data In 02-10-2022
1 5
1
5
edoardo_vicendo

Why does the Powershell script output empty values from second scheduled run?

Hi All, I have a strange behavior with a scheduled Powershell script.The .ps1 script simply execute in a Try Catch st...
by edoardo_vicendo Builder in Getting Data In 02-10-2022
1 3
1
3
retziel

How to match csv file with standard search

Hi,   I need your help    I have a standard query like this: index=a foo and I need to return only the record that m...
by retziel New Member in Getting Data In 02-10-2022
0 1
0
1
BeefSupreme

How to enrich GeoIP at index time?

I am sure this is a pretty common use case, mainly because IP addresses move, the data is not static so for security ...
by BeefSupreme New Member in Getting Data In 02-09-2022
0 3
0
3
adnankhan5133

Ingesting Palo Alto logs from an external organization into our on-prem Splunk instance- best practices?

Hello, We are in the process of ingesting Palo Alto logs from a separate organization’s network into our instance of ...
by adnankhan5133 Communicator in Getting Data In 02-09-2022
0 1
0
1
michael_sleep

Why is one transform overriding the other with my current configuration?

Hey there, I have the following in my props.conf file: [tomcat-appl] TRANSFORMS-set = createsource, instance This ...
by michael_sleep Communicator in Getting Data In 02-09-2022
0 13
0
13
slin

How do I change the sourcetype after the data has been indexed?

I just installed Splunk for the first time. After some trial and error I uploaded a file but later I found that I nee...
by slin Splunk Employee Splunk Employee in Getting Data In 02-09-2022
1 7
1
7
bsrikanthreddy5

How to copy indexed data from one index to another index in smartstore enabled cluster

I have a requirement to move indexed data from index-A to another index-B in a smart-store enabled cluster. Both inde...
by bsrikanthreddy5 Path Finder in Getting Data In 02-09-2022
0 1
0
1
TheBravoSierra

How to pull in Windows Event logs from the Windows PowerShell path

Hi, I'm trying to pull in Windows Event logs from the Windows PowerShell path. This path includes 800s, which I've se...
by TheBravoSierra Path Finder in Getting Data In 02-09-2022
0 2
0
2
alcolea90

Why is the Palo Alto Cortex XDR Pro incident events missing some fields?

Good afternoon, I have a Cortex XDR input configured in my Palo Alto Networks add-on. I want to deploy some use cases...
by alcolea90 New Member in Getting Data In 02-09-2022
0 0
0
0
Doxie

Why does splunkd.exe has failed connections and high latency towards our Splunk servers?

Hi, Let me start by saying that that i have a very limit knowledge about Splunk, its normally not my area of expertis...
by Doxie New Member in Getting Data In 02-09-2022
0 0
0
0
heats

Why is splunkd log not pulling the Windows event logs for application and security?

I pulled this from the splunkd log. I finally have my Windows 2016 box checking into Splunk. I can see it in Forwarde...
by heats Explorer in Getting Data In 02-09-2022
0 6
0
6
bosseres

How to configure DB logs in heavy forwarder to forward events to indexers?

Hello, everyone! I need help. I configured DB connect app on heavy forwarder and connected database input. I can view...
by bosseres Contributor in Getting Data In 02-08-2022
0 3
0
3
Get Updates on the Splunk Community!

Modernize your Splunk Apps – Introducing Python 3.13 in Splunk

We are excited to announce that the upcoming releases of Splunk Enterprise 10.2.x and Splunk Cloud Platform ...

Step into “Hunt the Insider: An Splunk ES Premier Mystery” to catch a cybercriminal ...

After a whole week of being on call, you fell asleep on your keyboard, and you hit a sequence of buttons that ...

SplunkTrust Application Period is Officially OPEN!

It's that time, folks! The application/nomination period for the 2026-2027 SplunkTrust is officially open. If ...
Top Solution Authors
View All