Getting Data In

Community Activity

Splitting of sourcetype Hello thereI am monitoring files using input.conf and define source source type therei am trying to split sourcetype ... by rahulg Explorer in Getting Data In 02-16-2021 0 2	0	2
Which version of splunk Universal forwarder supports for AIX 5.X and AIX 6.X version OS. Which version of spunk Universal forwarder I need to install for AIX 5.1 and AIX 6.1 version OS machines. We have Spl... by hari_mbusa New Member in Getting Data In 02-16-2021 0 0	0	0
Multiple Indexes, single S3 Bucket with SQS Given a Splunk environment with SQS (S3) as the data source, is it possible to "filter" messages at so that we can s... by megabit New Member in Getting Data In 02-16-2021 0 0	0	0
Hardware reference for Stream App Hi at all,I have to capture strems coming from some tap devices in my network using Steam App.Which are the minimal h... by gcusello SplunkTrust in Getting Data In 02-16-2021 0 0	0	0
Getting data in from S3 to Splunk through SQS based S3 method Hi Splunkers , We are collecting logs from multiple devices/application and sent to one single S3 bucket and they are... by spl_unker Explorer in Getting Data In 02-16-2021 0 0	0	0
Reusing Splunk Heavy Forwarder License Can we stop using a Licensed Heavy Forwarder and reuse the same license on setting up another Heavy Forwarder ? by ssplunkadmin Explorer in Getting Data In 02-16-2021 0 3	0	3
DBConnect on Heavy Forwarder 1. Can DBconnect on Heavy Forwarder be configured to pull data from tables in DB2 database and pushed to Splunk cloud... by ssplunkadmin Explorer in Getting Data In 02-16-2021 0 1	0	1
How do I set different source types on one data input? Hello, I have a Data Input for TCP:10514 where I am receiving logs from different devices (blue coat proxy (192.168.... by noybin Communicator in Getting Data In 02-16-2021 1 17	1	17
Unable to extract timestamp from CSV file I'm trying to extract timestamp exactly from the CSV for each event, but doesnt happen. It show only indexed time in ... by rajasha Explorer in Getting Data In 02-16-2021 0 2	0	2
Monitor Splunk Updates Hello,I need some help. One of our clients wants to see when the patch version of Splunk is updated. Is this possible... by ivan_yanev Explorer in Getting Data In 02-16-2021 0 2	0	2
How do I index Kaspersky Security Center logs in Splunk? Hello, I'd like to monitor the logs of Kaspersky Security Center with Splunk . I found that I should add in inputs.c... by Rimah Engager in Getting Data In 02-16-2021 0 5	0	5
Heavy forwarder redundancy and HA Hi, My client needs High Availability in the heavy forwarders. They are collecting events from devices on a datacen... by noybin Communicator in Getting Data In 02-16-2021 1 4	1	4
Decode Logs coming from Syslog (SSL) Hi, i am trying to send encrypted logs from Syslog to Splunk. To decrypt them i changed the splunk/etc/system/local/... by elli_i Engager in Getting Data In 02-15-2021 0 7	0	7
Extracting event timestamp from CSV My apologies in advance for having to ask this question again but I did not get a definitive answer my first time. I... by jcbrendsel Path Finder in Getting Data In 02-15-2021 2 5	2	5
Am I over utilizing Props/Transforms? I'm going to describe a typical use case. The Software team will have one log file for most of it's outputs, lets cal... by ekenne06 Path Finder in Getting Data In 02-15-2021 0 1	0	1
How to get a list of all indexers and their IPs in my Enterprise environment How do I get a complete list of all indexers in my Splunk Enterprise environment? by SamHTexas Builder in Getting Data In 02-15-2021 0 2	0	2
search a query on splunk using the rest api Hi,I want to create a rest api request to create a search in splunk and get the details(logs) of the search result. I... by vagdevi Observer in Getting Data In 02-15-2021 0 7	0	7
Extract fields from the log I am trying to get logs from a firewall into splunk. Usually i work with regex to extract the fields, but these logs ... by mariojost Engager in Getting Data In 02-15-2021 0 1	0	1
How to use "remove monitor" to remove security event logs from my inputs When I had initiall installed my forwarder I selected "security" as one of my inputs. Now I want to remove this as an... by aywong Path Finder in Getting Data In 02-14-2021 0 9	0	9
Monitoring Event Logs Hi,I'm trying to pull the event logs when an account is being locked in Active Directory, but I could see multiple en... by yashaswinig2210 Engager in Getting Data In 02-14-2021 0 0	0	0
Input tab doesn't load : Microsoft Azure Add-On Hi, We have to ingest activity log into Splunk. We installed Microsoft add-on for Splunk on our heavy forwarder. When... by venkattm Loves-to-Learn in Getting Data In 02-13-2021 0 1	0	1
System Time in Splunk off but log times are correct Here is my environmentCluster Master, License Master, Deployment Server (on one Splunk instance)Cluster of 3 indexes ... by courtneyj Engager in Getting Data In 02-13-2021 0 1	0	1
Help filter out unwanted data from indexing using nullqueue Please Hi if someone could please help that would be great, I have events showing up in the indexer that are pushing me over... by marcusmartin Path Finder in Getting Data In 02-12-2021 0 6	0	6
HEADER_FIELD_LINE_NUMBER = 1 not working While trying to get the data from UF to indexer, the header is getting indexed as well. Attached the log file and the... by srinivasgowda Explorer in Getting Data In 02-12-2021 0 1	0	1
Timestamp recognition when date appears once but time appears on every line Hi, I can't seem to work out how to do this. I've looked in the documentation but can't find an example. I am trying ... by jbesant Explorer in Getting Data In 02-12-2021 0 0	0	0