Getting Data In

Community Activity

Cisco Switch Data Hello,We have multiple Cisco Switches that are configured to send logs to Splunk. When comparing the logs on the swi... by mcrist3 Explorer in Getting Data In 12-29-2021 0 4	0	4
Queries for an API user getting queued We have a Splunk cluster that is shared by multiple users/teams. We've set up an API user that makes calls to Splunk... by boazr Explorer in Getting Data In 12-29-2021 1 1	1	1
JSON events duplicate extractions I've got a log file that I am monitoring and where I am using a props.conf on the UF to monitor. I'm using the follow... by dtow1 Path Finder in Getting Data In 12-28-2021 0 0	0	0
okta logs into splunk, error 309 I configured the okta identity cloud for splunk App to ingest okta logs into splunk but getting the error message bel... by mayson Engager in Getting Data In 12-28-2021 1 0	1	0
I want source type separation using prop.conf. index name = my_indexsource name = my_sourcesourcetype = my_sourcetpyehost = 192.168.0.10----------------------------... by noott211 Path Finder in Getting Data In 12-28-2021 0 3	0	3
How to tell Splunk to get older data from System WMI This is my current WMI setup: [WMI:WinLogSysTst] disabled = 0 event_log_file = System index = winlogsystst interval =... by bogdan_nicolesc Communicator in Getting Data In 12-28-2021 1 6	1	6
Query on the SQL Version 2017 \| Splunk DB Connect Hello Guys, We have to integrate one of the SQL server with Splunk and the current version is SQL 2014. We are using... by kiranpanchavat1 Path Finder in Getting Data In 12-27-2021 0 1	0	1
FireEye CM integration Is it possible to send alert log from FireEye CM (central management) to FireEye App for Splunk ? by wcsky New Member in Getting Data In 12-27-2021 0 0	0	0
how to import .evtx file from diffrent machine Hello splunk community, I am running splunk enterprice version 7.1.2 on a Windows server 2016. We are trying to imp... by jeroenborger Explorer in Getting Data In 12-27-2021 1 2	1	2
convert time format Hi , In splunk query i need to convert time format as below . Current format - Apr 13 17:58:35 Required Format :... by Ravan Path Finder in Getting Data In 12-27-2021 1 6	1	6
Data could not be written: I have searched high and low for an answer here and on web, but seems that i can't find a suitable answer. Did anyone... by bogdan_nicolesc Communicator in Getting Data In 12-27-2021 0 3	0	3
Need to monitor only 4 hosts - data on boarding Hello Team, Splunk UF has been installed in all our 1000+ windows servers and we are monitoring those logs. Now the s... by kiranpanchavat1 Path Finder in Getting Data In 12-26-2021 0 1	0	1
Calculate duration of two different events I have logs which shows the job status ( Running, succeeded and failed) and all jobs have unique job id , now I want ... by rishabhpatel20 Explorer in Getting Data In 12-25-2021 0 2	0	2
Timerange as an argument I am working on using the same time range as an argument used in the Time range picker. how do I do that?\|metadata i... by Raghul_S Engager in Getting Data In 12-24-2021 0 2	0	2
Lines in log file not indexed if line has time stamp from the past Hello all,One of our home grown apps copies logs to a directory monitored by Splunk once a day around midnight. Splun... by loligator New Member in Getting Data In 12-23-2021 0 4	0	4
SC4S and Universal Forwarders Hello,I am new to Splunk and working on getting our environment setup correctly. I have a SC4S server setup and wor... by njusticesnb Engager in Getting Data In 12-23-2021 0 1	0	1
Heavy Forwarder config I need to Forward All Windows Security/Application/system logs to 2 Separate Splunk instances with different Index na... by tam82 Explorer in Getting Data In 12-23-2021 0 0	0	0
What is the best way to re-run a summary index to collect missed events after an outage? Hi - Let's say you have a scheduled query / report that runs daily (at mid-night) looking over a time range of Last 2... by Glasses Builder in Getting Data In 12-23-2021 0 2	0	2
Remove first part of string before creating a JSON source type HI I have used the below answer to get me 95% to a full solution, but i just cant get the last bit. https://answers.... by robertlynch2020 Influencer in Getting Data In 12-23-2021 1 7	1	7
Splunk server uptime - missing Splunk server details Hi all, I am running the below query, I get responses from some of my Splunk servers but not all ? \| rest /services... by pbrinkman Path Finder in Getting Data In 12-22-2021 0 6	0	6
How to limit the use of resources like memory and CPU by Universal Forwarder? I'm monitoring AD and DNS Server logs on Windows 2019 servers and Universal Forwarder has been the resource utilizati... by jfeitosa_real Path Finder in Getting Data In 12-22-2021 0 1	0	1
How to resolve "Problem replicating config (bundle) to search peer 'xxxxx.yyyy.com:8089', got http response code 400 HTTP/1.1 400 Unparsable URI-encoded request data."? Have 1 indexer and 1 search head. Separate VM's. When trying to view indexed data from search head UI we receive the ... by ksoucy Path Finder in Getting Data In 12-22-2021 1 7	1	7
How to monitor HAproxy logs of server in Splunk Hi @gcusello ,Could you please help me to monitor HA proxy logs of server in Splunk. What should be the steps that ne... by rahul2gupta Path Finder in Getting Data In 12-22-2021 0 3	0	3
HTTP Event collector Hi @gcusello ,I am curious to know why I am able to see HTTP Event collector under the Data Inputs on my Indexer wh... by rahul2gupta Path Finder in Getting Data In 12-22-2021 0 2	0	2
filtering cisco devices with syslog-ng.conf to avoid catchall Hello- I'm trying to filter cisco logs so that all data shows up in it's own folder in syslog-ng. However only some ... by agw Path Finder in Getting Data In 12-21-2021 0 2	0	2