Getting Data In

Discussions

Thread Info

Outputlookup creating csv with columns that are alphabetical?

I have a search that gathers a bunch of data from various sources and appends to 1 big stats that I have reporting in...

by Explorer in

How can I determine if the UF is seeing anything on a port?

I'm trying to get our syslogs forwarded via UF to Splunk Cloud. I've got the UF listening on port 514 and added ...

by Explorer in

Any splunk best practices for field extraction and line breaking?

Hi Splunkers, Any Best practices for field extraction and line breaking. i want to know something like , if we ...

by Explorer in

"INFO WatchedFile - Resetting fd to re-extract header"?

I have the csv file which has the below lines. ========================= METRIC_NAME,METRIC_UNIT,BEGIN_TIME,END...

by Explorer in

Kv store status showing failed not able to start?

Getting errors as Failed to start KV Store process. See mongod.log and splunkd.log for details. tried few steps by...

by Path Finder in

Granular AWS CT Account Logging using Log Prefix within Splunk TA for AWS

Hello, I realize this is a rather specific request so I'll keep it short and simple to see if anyone has had previ...

by Path Finder in

Update slpunkclouduf.spl app on Windows Universal Forwarder- What is the syntax we should use to force the update?

Hi, Got a message from Splunk that our universal forwarder certificate package will be expiring soon and trying to...

by Engager in

How do we get duplicate time values from file?

Hello All, I have a file that is created/appended via a bash script (varialbe >> file.txt) It puts the newest d...

by Communicator in

PLC & HMI Monitoring

Hi I'm currently looking for a software that can monitor logs from PLC (mostly Allen Bradley devices) and HMI (C-More...

by New Member in

Why am I receiving a "Server is busy" error after configuring the HTTP Event Collector?

Dear all, I have configured the HTTP Event Collector but can't successfully send events. My configuration in in...

by Explorer in

Two types of data over the same port?

I'm trying to get both JSON and syslog information from our firewall into Splunk Cloud using universal forwarder. ...

by Explorer in

How to ingest bloomberg application data into splunk?

hai all, can you suggest is there anyway to ingest blookberg application data into splunk

by Path Finder in

How do I extract these events between two date ranges?

Hello!, First time posting here. Just started learning Splunk and I am trying to extract events between two date rang...

by Engager in

Why did Deployment client stop phoning home?

Hello, We have a huge setup and UFs are managed through Deployment server, All the UFs are at far places and ...

by Loves-to-Learn in

Any suggestions on how to check on issues with logs from network devices not writing into disk in rsyslog?

Hello Splunk Experts, We had issue where several network devices not ingesting into SPlunk. Further checking with ...

by Engager in

How do I send journald logs to my Splunk indexer?

I would like to separate these logs into units (ie - etcd.service, kube-apiserver.service, kube-controller-manager.se...

by New Member in

Universal Forwarder- Am I misunderstanding the UF?

Good Morning all , I have a standalone splunk installation , there is no syslog data being transmitted and Im rea...

by Loves-to-Learn Lots in

Can splunk enable listen be made more secure?

Is it possible to restrict the "splunk enable listen" command so that it only listens to certain IP addresses? Or bet...

by Explorer in

Universal Forwarder failed to start--how do I get it to ingest the missed entries?

The UF service failed to start after a reboot on a Windows Server. I've addressed that issue, but there are logs th...

by Explorer in

How to remove Commas In a Field Value?

Hello! I have recently just downloaded Splunk on my MAC for experimenting/practicing searching and dashboarding. I...

by Explorer in

Get Updates on the Splunk Community!

Getting Data In

Discussions

Outputlookup creating csv with columns that are alphabetical?

How can I determine if the UF is seeing anything on a port?

Any splunk best practices for field extraction and line breaking?

"INFO WatchedFile - Resetting fd to re-extract header"?

Kv store status showing failed not able to start?

Granular AWS CT Account Logging using Log Prefix within Splunk TA for AWS

Update slpunkclouduf.spl app on Windows Universal Forwarder- What is the syntax we should use to force the update?

How do we get duplicate time values from file?

PLC & HMI Monitoring

Why am I receiving a "Server is busy" error after configuring the HTTP Event Collector?

Two types of data over the same port?

How to ingest bloomberg application data into splunk?

How do I extract these events between two date ranges?

Why did Deployment client stop phoning home?

Any suggestions on how to check on issues with logs from network devices not writing into disk in rsyslog?

How do I send journald logs to my Splunk indexer?

Universal Forwarder- Am I misunderstanding the UF?

Can splunk enable listen be made more secure?

Universal Forwarder failed to start--how do I get it to ingest the missed entries?

How to remove Commas In a Field Value?

Observability Highlights | January 2023 Newsletter

Security Highlights | January 2023 Newsletter

Platform Highlights | January 2023 Newsletter

How to configure Azure functions to pass the loggi...

Is it possible to send Jenkins custom logger to Sp...

Why do I receive SSL alert number 40 with selfsign...

Why am I unable to call HEC instance from Splunk C...

How do I correctly index github enterprise logs?