Getting Data In

Community Activity

Ingest entire XML file Hello everybody,we are monitoring via Universal Forwarder several directories with a large XML file in there (around ... by nicofantinato Path Finder in Getting Data In 05-26-2021 0 6	0	6
Sending Json output via CURL I m just trying to feed the AWS instance data to Splunk, the output for "aws ec2 describe-instances" is in json forma... by vickymanoignis Loves-to-Learn in Getting Data In 05-26-2021 0 5	0	5
Renaming sourcetype and source with props and transforms We have some VIOS servers that are special-purpose machines that aren't allowed to have a UF installed. I want to ho... by barak_l_griffis Engager in Getting Data In 05-25-2021 0 3	0	3
Close a TRANSACTION with only 1 EVENT Hi.I would like to unterstand why Splunk does not close a transaction with only 1 event, if i force a STARTSWITH para... by verbal_666 Builder in Getting Data In 05-25-2021 0 3	0	3
Splunkforwarder fishbucket and salt used to create hashes I have a csv file that I am monitoring with the props.conf for the sourcetype associated with this file with the para... by govardha Path Finder in Getting Data In 05-25-2021 0 6	0	6
Monitoring Directories My local drive doesn't appear in monitoring data in files and directories. Does anyone know how to make my local driv... by hieu098 New Member in Getting Data In 05-25-2021 0 1	0	1
How to filter using sourctype field joined with another sourcetype I have a issue like ,the field which is not in the second sourcetype used as filter is not getting filtered.Environme... by dtccsundar Path Finder in Getting Data In 05-25-2021 0 1	0	1
Sophos Central SC4S Hi,I am currently working on getting our Sophos Central Cloud logs into SPLUNK. I have the 1st step out of the way in... by Shaun-Crouch Observer in Getting Data In 05-25-2021 0 0	0	0
Sending HEC data to Nullqueue We are using HEC collector endpoint to consume logs from FluentD, we recently identified filtering opportunity and tr... by sun1000 Path Finder in Getting Data In 05-24-2021 0 11	0	11
Adding HEC input does not have option for app selection Hi,While adding an HEC input on the Splunk heavy forwarder, Splunk does not provide the option to select the app. I a... by termcap Path Finder in Getting Data In 05-24-2021 0 3	0	3
Sending CSV file from application server to splunk via HTTP Event collector Hi Guys, Hope you are doing great. We are planning to send the data to the indexer via HTTP event collector from an a... by kartm2020 Communicator in Getting Data In 05-24-2021 0 1	0	1
How to get data from App that offers REST API Hello Team, I have to collect and import data into Splunk, provided by a REST API.How would it be possible to do?Scen... by chtamp New Member in Getting Data In 05-24-2021 0 1	0	1
remove source and source types Hi I was testing splunk by adding multiple servers by both syslog and splunk forwarder. But now my splunk indexer h... by dhs_harry08 Path Finder in Getting Data In 05-24-2021 3 7	3	7
Splunk and Postman I have a question regarding the Splunk and Postman interaction. I've set up a Splunk instance inside a Linux virtual ... by jwkriewall Observer in Getting Data In 05-24-2021 0 2	0	2
How can I get web request data into Splunk? Brand new Splunk user here. As a learning experience, I want to index all URLs requested by users/computers (Mac, Lin... by hux2000 Engager in Getting Data In 05-24-2021 1 1	1	1
Why is the search filter returning no events? hi all, I have an index with a custom field and an extract of my props.conf: [source::/test/.../*_Splunk_Telemetry.... by fteyssandier New Member in Getting Data In 05-24-2021 0 7	0	7
Connect Splunk (hosted on premise) to Database (hosted on AWS cloud) using Splunk DB Connect Any suggestion on approach to connect Splunk (hosted on prem) to Database (hosted on AWS cloud) using Splunk DB Conne... by pahujadeep Explorer in Getting Data In 05-24-2021 0 1	0	1
Add Data Page Not Found Hello.I've installed Splunk Enterprise for Windows x-64 bit on my Windows 10 machine for training purposes.I am worki... by RB1 Observer in Getting Data In 05-21-2021 0 1	0	1
How to prevent splunk forwarder for sending gibberish data over to the indexer? As seen in Solved: How to establish secure connection between Univers... - Splunk Communitythere are ways to secure t... by z080236 Explorer in Getting Data In 05-21-2021 0 13	0	13
inputs.conf batch wildcard not working Here is the inputs.conf entry: [batch://opt/splunk/var/run/splunk/csv/*.csv] disabled = false move_policy = sinkhole ... by dbray_sd Path Finder in Getting Data In 05-21-2021 0 3	0	3
Rollback Error during SplunkUniversalForwarder Setup on Windows Server 2012 R2 Hi All,I am trying to install splunkforwarder-7.3.8 Windows 64 bit version on Windows 2012 R2 Server.But I got Rollba... by dmsplunk9 Engager in Getting Data In 05-21-2021 1 1	1	1
Daily index volume by sourcetype How does one go about calculating daily index volume by sourcetype? I'm currently capturing all logged data and se... by mtanadsk Explorer in Getting Data In 05-21-2021 2 12	2	12
Send data Splunk to Splunk using HEC Hi All,I would to know one information.Do you think is possible send splunk data to another splunk instance with HEC?... by aasabatini Motivator in Getting Data In 05-20-2021 0 3	0	3
Transforms not being applied to _json sourcetype I've got a dedicated Heavy Forwarder that I am trying to use to ship logs out via syslog:outputs.conf [syslog:outgoin... by jocobknight Explorer in Getting Data In 05-20-2021 0 2	0	2
Splunk License Master down On latest version 8.0.2, if license master is down will search work or it will wait for 72 hours & then stop? by BRG Engager in Getting Data In 05-20-2021 0 1	0	1