Getting Data In

Community Activity

What is the best way to forward Vcenter and ESXi host logs to Splunk? Hello, I am working on a project to get logs from Vcenter and ESXi host to Splunk . question 1 ) Is Vcenter app fo... by raomu Explorer in Getting Data In 03-23-2021 1 1	1	1
Windows monitored file duplicate data I have a csv file that is written to once a day. The input points to a custom sourcetype [csvtest] which has approp... by darrenfuller Contributor in Getting Data In 03-23-2021 0 0	0	0
How do I get a count of applications deployed to forwarders? The Deployment Server - (Settings -> Forwarder Management) shows Host Name, Client Name, Instance Name, IP Address, A... by rholm01 Explorer in Getting Data In 03-23-2021 0 7	0	7
Regex help Hi,I have the below event where i tried to extract field ServerAEvent:ADMU0509I: The Application Server "serverA" can... by SS1 Path Finder in Getting Data In 03-22-2021 0 2	0	2
What values to be updated in the props conf file ? My logfile is like below,"timestamp": "2021-03-22 22:37:35". Can someone tell me how to edit the props file correctly... by ethanthomas Path Finder in Getting Data In 03-22-2021 0 1	0	1
how to list metadata from dbconnect inputs? Hello, I have to survey our client's dbx inputs, with their metadata (index, sourcetype) but the command: \| rest sp... by 3DGjos Communicator in Getting Data In 03-22-2021 0 6	0	6
Steps to use included Lookup tables that come with Splunk enterprise & ES Steps to use included Lookup tables that come with Splunk enterprise & ES. I have over 100 Lookup tables that I have ... by SamHTexas Builder in Getting Data In 03-22-2021 0 7	0	7
Multiple time formats in one sourcetype - failed to extract timestamp Hello Dear Splunkers Recently we got reported issue when our indexers are reporting multiple issues with timestamp e... by Denis_B Observer in Getting Data In 03-22-2021 0 2	0	2
Issues with multiline events props.conf Hi Everyone,Requesting small help with configuring props.conf which can help me to break the multiline events correct... by sunnyb147 Path Finder in Getting Data In 03-22-2021 0 4	0	4
How do I check to see if a couple of Hosts are sending data to Splunk Enterprise How do I check to see if a couple of Hosts are sending data to Splunk Enterprise. They both are VMs. by SamHTexas Builder in Getting Data In 03-22-2021 0 4	0	4
Eventhubs - Splunk Add-ON for ms cloud services partitions I was using the MS Azure add-on for splunk. Trying to switch to Splunk Add-on for MS cloud services. One thing i n... by zippo706 Explorer in Getting Data In 03-21-2021 2 0	2	0
Splunk forwarder not processing batch input Hi All,I have a deployment app which successfully deployed to a server with the splunk forwarder installed, but which... by cku1 Engager in Getting Data In 03-21-2021 0 2	0	2
Trying to monitor local macOS system logs and performance data as remote log from Ubuntu instance on VirtualBox I am trying to get my Ubuntu instance on VirtualBox to ingest my mac's system logs and performance data as remote log... by Herman Explorer in Getting Data In 03-21-2021 0 0	0	0
Scripted input interval Hi,For the scripted input setup i want the script to run only at specific time i.e. 7 AM EST or 8 AM EST. How do i ac... by SS1 Path Finder in Getting Data In 03-20-2021 0 1	0	1
Is there any way to monitor CPU on Mac OS? Hello, Is there any way to monitor CPU/ performance on a Mac OS? Does the universal forwarder for Mac include scrip... by DavidHourani Super Champion in Getting Data In 03-20-2021 0 3	0	3
What source type do I enter while opening up a port to my License server from another Splunk Server What source type do I enter while opening up a port to my License server from another Splunk Server. by SamHTexas Builder in Getting Data In 03-19-2021 0 1	0	1
Using Transfroms.conf to drop parts of a file path I am new to using the Transfroms.conf and props.conf to manipulate data. The issue we are experiencing is in our WinE... by defikes Explorer in Getting Data In 03-19-2021 0 1	0	1
sourcetype edit page is missing I have two Splunk environments with the same Splunk Version 7.3.3.On one environment I see the sourcetype edit link w... by RetailOperation Explorer in Getting Data In 03-19-2021 0 0	0	0
Column wise Percentage in a pivot table I have pivoted my dataset to generate a table. The row and column header are auto generated based on attributes of da... by vikbha Loves-to-Learn in Getting Data In 03-19-2021 0 0	0	0
Windows Subsystem for Linux logging Hi all,Any idea what type of logs we can onboard for WSL2 and how we can do that. by mdmosaraf New Member in Getting Data In 03-18-2021 0 1	0	1
What type of data in addition to sysloag should be ingested into Splunk to help SOC team? I already have the ePO add on What type of data in addition to sysloag should be ingested into Splunk to help SOC team? I already have the ePO add ... by SamHTexas Builder in Getting Data In 03-18-2021 0 1	0	1
SplunkD Service randomly stopping on Windows Server 2012 My SplunkD Service randomly stops on my Windows Server 2012 making it so that I cannot reach the web interface. I hav... by mdplourde Explorer in Getting Data In 03-18-2021 0 4	0	4
Index all and selective forward Hi all. I need some help to index all data coming into one server and only forward 3 sourcetypes to a 2nd server. Rec... by Adevill Loves-to-Learn Lots in Getting Data In 03-18-2021 0 6	0	6
why am I seeing duplicate events in my metrics indexes? I am seeing duplicate events in a metrics index, help! deployment flow:hec client--->load balancer--->HFs (hec receiv... by rphillips_splk Splunk Employee in Getting Data In 03-17-2021 1 3	1	3
JMS Messaging Modular Input Hi All,I have installed and setup JMS Modular input add-on on Splunk HF and given below inputs-Activation keyJNDI cla... by kalyaniadm_wipr Loves-to-Learn in Getting Data In 03-17-2021 0 0	0	0