Getting Data In

Start a Conversation

Discussions

Start a Conversation

Thread Info

How to connect to apigee edge free account using Splunk

Apigee Edge is API management platform. It is both http and tcp based and it sends to syslogs. Can I install Splun...

by Explorer in

Splunk Windows Registry Monitor not showing any events

Hey, I want to monitor the changes in my Windows Registry. I have did the needed procedures and steps however the ...

by Engager in

Windows Forwarded Events from UF on WEC are not being ingested

Hi I have a Windows Server Collecting WinEventLogs from a number windows host endpoints. I was told the Server was a...

by Builder in

Splunk as Datasource for Grafana?

Hello, I'd like to import data from Splunk into Grafana so I can use Grafana's visualization and Splunk as a data...

by Explorer in

REST GET request to get list of AD users

Hello, I'm trying the following request in Postman to send a request to get the list of Active Directory users: http:...

by New Member in

csv headers are not getting listed

Hello, I have clonned the CSV source type in Splunk and created a new CSV sourcetype as Alpha_csv and configured ...

by New Member in

could not use strptime to parse timestamp

Feb 18 18:36:20 smtp2 sm-mta[17872]: l1J0a3fO017872: discarded I have one sample event. when I this it gives me "...

by Path Finder in

change date of import data

hi i'm copy log of my application to splunk server with script (i don't use forwarder here) now problem is log se...

by Motivator in

How does splunk reassamble chunks of data coming from UFs in an indexer cluster ?

By default, UFs are sending chunks of 64kB data and spread these over multiple indexers. But indexers are supposed to...

by Contributor in

How can I get more than 10,000 lines into a single event?

I want more than 10,000 lines to merge and show in a single event. [tally_nightly_prd] SHOULD_LINEMERGE=true NO_BI...

by Path Finder in

Rex pattern to extract unc path from xml

I like to extract the UNC path from a log, below a portion from the file : ;<soa:FileSystem identifier="8ec65285-1...

by Engager in

Error Message; The search for datamodel 'abc_123' failed to parse, cannot get indexes to search?

I have two indexers in peer that share 1 index, and 1 data model. Both indexers are configured identically. Both data...

by Communicator in

how to force all data to go to a different index?

How do I force all data to go to a different index without inserting index=foo for all input stanzas?

by Splunk Employee in

500 Internal Server Error out of splunklib/binding.py

I'm seeing this error message stream when the TA-ObserveIT tries to get what I think is the configuration information...

by Communicator in

Why am I getting "404 Not Found" for every REST API call?

I am using the following query as per documentation: curl -k -u username:password http://myhosthere:8000/services/...

by Explorer in

KV_MODE not extracting xml fields

I have an app on a deployment server that runs a script and has splunk ingest the output which is valid xml. I've add...

by Explorer in

Getting containerized universal forwarder to forward host log files

I would like to be able to run the forwarder in a container, and have it forward my host logs from /var/log. So I mou...

by New Member in

Splunk indexed data into Azure datalake storage or Blob storage

Is there any way to send already indexed splunk data (from one index) into Azure data lake storage or Azure Blob stor...

by Explorer in

Change index depending on host

Hi all, I'm trying to split Windows events into different indexes at index time depending on the host which is sen...

by Path Finder in

Looping in csv items to count how many values matches in a index

Hi all, starting from a csv which contains 10 items, I want to count ( in order to produce a chart ) all the matches ...

by Path Finder in

Get Updates on the Splunk Community!

Getting Data In

Discussions

How to connect to apigee edge free account using Splunk

Splunk Windows Registry Monitor not showing any events

Windows Forwarded Events from UF on WEC are not being ingested

Splunk as Datasource for Grafana?

REST GET request to get list of AD users

csv headers are not getting listed

could not use strptime to parse timestamp

change date of import data

How does splunk reassamble chunks of data coming from UFs in an indexer cluster ?

How can I get more than 10,000 lines into a single event?

Rex pattern to extract unc path from xml

Error Message; The search for datamodel 'abc_123' failed to parse, cannot get indexes to search?

how to force all data to go to a different index?

500 Internal Server Error out of splunklib/binding.py

Why am I getting "404 Not Found" for every REST API call?

KV_MODE not extracting xml fields

Getting containerized universal forwarder to forward host log files

Splunk indexed data into Azure datalake storage or Blob storage

Change index depending on host

Looping in csv items to count how many values matches in a index

Introducing Ingest Actions: Filter, Mask, Route, Repeat

Splunk Forwarders and Forced Time Based Load Balancing

NEW! Log Views in Splunk Observability Dashboards Gives Context From a Single Page

How to Integrate gmail logs into splunk?

Help with Parsing multivalue fields

When will AWS VPC Flow input be available in data ...

Is it possible to get a list scheduled scripts on ...

How to use SSL validation with HEC?