Getting Data In

Community Activity

Syslog -> 2 different Regex -> different destinations each Hello,I have been trying to get a Splunk config to work for a while, and have come here for help! I'm out of ideas. I... by RyanH Loves-to-Learn in Getting Data In 11-29-2021 0 5	0	5
TrendMicro deepdicovery app settings Hello Team,I am trying to setup the TrendMicro DeepDiscovery app to process the DDA/DDI events. I also have TrendMicr... by bbiswabhusan Explorer in Getting Data In 11-29-2021 0 0	0	0
Can Splunk be used to log Jabber instant messages I'm responsible for a Cisco IM & Presence system. It can support logging of messages to an external SQL database or ... by osoares4 Explorer in Getting Data In 11-29-2021 0 5	0	5
Palo Alto App Hi AllHoping someone can help me, I am trying to get the Palo Alto App working we are a Splunk cloud customer and hav... by the_rains Engager in Getting Data In 11-29-2021 0 0	0	0
CEF Format parsing We have logs coming in from one of the source in CEF format. How to deal CEF Format data parsing in Splunk so that i... by pavanbmishra Path Finder in Getting Data In 11-28-2021 0 1	0	1
Filtering based of Nested JSON objects Hi,First question here - apologies if it's obvious or basic!I am trying to parse a nested list and find specific poli... by nicovibert Engager in Getting Data In 11-28-2021 0 3	0	3
Metric event data with an invalid metric value cannot be indexed. How to troubleshoot I'm trying to fetch windows perfmon data using below input stanza but not receiving any data and I could see the erro... by Anuj New Member in Getting Data In 11-27-2021 0 1	0	1
Splunk Add-on for Microsoft cloud services Guys, could you please shed some light here?I have configured azure api management to stream events to event hub and ... by Knightrider1234 Explorer in Getting Data In 11-27-2021 1 6	1	6
HttpEventCollectorLogbackAppender - How do I configure it to verify certs? I can send events to Splunk cloud and Splunk Enterprise servers with HttpEventCollectorLogbackAppender, but with SSL ... by MikeSplunkHEC Engager in Getting Data In 11-26-2021 0 1	0	1
How do I convert the encoding to UTF-8 format? My security device cannot set the data type to be transmitted. How can I convert these data? Something like this:\xB0... by 7SnhA Observer in Getting Data In 11-26-2021 0 0	0	0
Splunk will not start to build Report acceleration summary when user role have Search filter restrictions I opened report acceleration for a report.The acceleration summary build well when user role has no Search filter res... by Jackson New Member in Getting Data In 11-26-2021 0 0	0	0
Why can't I see my forwarder in the forwarder management? by 7SnhA Observer in Getting Data In 11-26-2021 0 3	0	3
Index shows massive Index amounts although zero events ingested Hello,we are forwarding Logs from a host via universal forwarder. As the universal forwarder is not able to filter ev... by Software-Simian Path Finder in Getting Data In 11-26-2021 0 3	0	3
List all saved searches in Splunk Cloud Hi all,I need to get a list of all the saved searches that are created in a Splunk Cloud environment. I tried to exec... by pbalbasdtt Path Finder in Getting Data In 11-26-2021 0 1	0	1
How to transform raw JSON with field called 'index' Hi, I have json data being written to a log file and the log file is being forwarded to single Splunk index 'ti-l_asl... by jon_radford Explorer in Getting Data In 11-25-2021 0 6	0	6
how to differentiate single sourcetype based on 3 different OS using eval I have a single sourcetype where i need to differentiate the same sourcetype into 3 different categories based on OS ... by dtccsundar Path Finder in Getting Data In 11-25-2021 0 3	0	3
Delimited file with a header and date at the end I'm wondering how to properly onboard a file containing:- A header with file list- A separator (a horizontal line con... by PickleRick SplunkTrust in Getting Data In 11-25-2021 0 0	0	0
WARN LineBreakingProcessor Hi All, I have a log with 3 event inside of it, ( you can see it on the screenshot, I paste the sample logs here : ht... by jadengoho Builder in Getting Data In 11-24-2021 0 2	0	2
Disable AutoLB in Splunk UniversalForwarder Hello,I have a setup similar to the example shown in this page, we noticed that the firewalls showing systematic tcp ... by govardha Path Finder in Getting Data In 11-24-2021 0 2	0	2
Log pagination Hello guysi'm new on splunk and I would like to know if it was possible to view the logs of a date on each page.Would... by damnfox Engager in Getting Data In 11-24-2021 0 3	0	3
BREAK_ONLY_BEFORE works but LINE_BREAKER automatically added Can I configure BREAK_ONLY_BEFORE with this regex:##################################################################... by Azwaliyana Path Finder in Getting Data In 11-24-2021 0 5	0	5
Pushing syslog to Splunk indexer Hi ,A user is complaining that :From hostname1, we are pushing the syslog to Splunk indexer server IP - 10.20.30.40 v... by rahul2gupta Path Finder in Getting Data In 11-24-2021 0 3	0	3
f5 Silverline ASM Has anyone ingested f5 Silverline asm data? I've got the data from f5 Silverline via syslog, but wondering how I shou... by nortonjco Explorer in Getting Data In 11-24-2021 0 2	0	2
Ignoring any data record that begins with a "#" character I've got data being imported from a CSV file into a custom data type, but it's reading the first line (which begins w... by teward001 Path Finder in Getting Data In 11-24-2021 0 7	0	7
Unable to Collect SMBServer/Audit logs I have been unable to get the universal forwarders to correctly collect the SMB Server audit logs. The inputs.conf fi... by CJHindmarsh Explorer in Getting Data In 11-23-2021 0 7	0	7