Getting Data In

Community Activity

Add field to windows event Hello,Is it possible to add fields to the windows event collected by a forwarder ?I would like to add an environment ... by Policello New Member in Getting Data In 01-14-2021 0 3	0	3
Will upgrade to Splunk_TA_nix v8.2.0 still works with Splunk UF v7.0.4? Hi Team,We have Splunk Enterprise v7.2.9.1 and planning to upgrade to v8.1.1. Now, as a pre-requisite, we will upgra... by jaracan Communicator in Getting Data In 01-13-2021 0 0	0	0
Route syslog from heavy forwarder to 3rd party, but only WinEventLogs? We are sending logs received by our heavy forwarder to a 3rd-party syslog server. We thought we had it configured so ... by eblackburn Path Finder in Getting Data In 01-13-2021 0 0	0	0
TA-meraki Not Logging all Events to Splunk I've successfully installed and configured the TA-meraki app and have all the CIM compliant data coming into Splunk, ... by astackpole Path Finder in Getting Data In 01-13-2021 0 2	0	2
Catchpoint Splunk addons I used splunk catchpoint add-ons to fetch the data from catchpoint. But after i mapped into splunk i can see only 12 ... by uagraw01 Motivator in Getting Data In 01-13-2021 0 1	0	1
Splunk integration with other tool Hello I am having a single instance of Splunk enterprise on my environment ,Is there a way to forward the Splunk data... by splkadmin Explorer in Getting Data In 01-13-2021 0 5	0	5
Query to list All indexes and sourcetypes of All Apps present in an instance I need help to find a query that can list every source types and indexes of each and every app present in the search ... by rizshez Engager in Getting Data In 01-13-2021 0 2	0	2
Is it possible cluster master returns fqdn instead of IP's of Indexers ? Is it possible cluster master returns fqdn instead of IP's of Indexers ? if yes please explain how ? by puneetkharband1 Path Finder in Getting Data In 01-13-2021 0 2	0	2
Is there a tool to forward logs from Windows 2000/2003 servers to Splunk? Hi guys need your help. is there a tool which can monitor and forward logs from windows 2000/2003 servers to Splunk? by shellnight Explorer in Getting Data In 01-13-2021 0 2	0	2
coldToFrozen Azure blob storage account I have a distributed Splunk environment running in Azure IaaS. I need to start rolling my cold data off to archive an... by morphis72 Path Finder in Getting Data In 01-13-2021 0 1	0	1
Forward data without effecting ingest volume Hello,We have one universal forwarder, and two cloud instances. Currently I have all data going to 1 indexer, I've ... by dloszews Explorer in Getting Data In 01-13-2021 0 1	0	1
Splunkd Service in splunk entprise 8 after installation of splunk enterprise 8.0, the Splunkd Service cannot restart by engrimranzakir Explorer in Getting Data In 01-13-2021 0 2	0	2
Change log storage time When the indexes were created, they were created by default.Now that I needed to know how long a log went from hot t... by splunkcol Builder in Getting Data In 01-12-2021 0 1	0	1
Wrongly merged Events/permanently blocked tcpout queue with Intermediate Universal Forwarder. Using Universal forwarder as intermediate forwarder for source universal forwarders can causeEvents being merged into... by hrawat Splunk Employee in Getting Data In 01-12-2021 1 5	1	5
inputs.conf `monitor` (re)ingest historic data Hello, I have an inputs.conf monitor stanza configured to ingest syslog data that has been written to a file with rs... by mbrownoutside Path Finder in Getting Data In 01-12-2021 0 3	0	3
Report all Logon Activity != United States I'd like to pull a logon report that shows me any logon activity that is != to the United States. Any help is great... by itsmevic Communicator in Getting Data In 01-12-2021 0 2	0	2
Duplicate Data In Sourcetype Hello,I have two Domain Controllers that are producing a lot of data, pushing my daily usage over the limit. I saw t... by jbender72 Path Finder in Getting Data In 01-12-2021 0 2	0	2
Splunk HTTP Event Collecter Spring Boot Log4j2 Causing Application to hang I have a Spring Boot Application using an HTTP Event Collector to send logs to splunk using a Log4j2 Appender. https:... by jaynish97 Observer in Getting Data In 01-12-2021 0 0	0	0
Syslog Data Reaching Forwarder? Hello, I need to check to see if Syslog data is reaching my forwarders. What would be the best query to use to check... by itsmevic Communicator in Getting Data In 01-12-2021 1 2	1	2
Last Time Heavy Forwarder received logs from it's Source I've pieced together some SPL that shows me the last time the forwarder has sent its log data, but need to convert th... by itsmevic Communicator in Getting Data In 01-11-2021 0 1	0	1
deleting misconfigured hosts Hey guys I've been having trouble finding documentation about removing indexed data.After looking through the "meta w... by splunk_user4 Explorer in Getting Data In 01-11-2021 0 1	0	1
Monitoring Docker containers like in the video Hello,Where can we find instruction to setup Docker infrastructure monitoring like in the video below?https://www.spl... by adam0z Observer in Getting Data In 01-11-2021 0 1	0	1
Universal forwarders ingestion behind F5 LB Hi guys,I should find a solution to ingest a file on a network share that is managed from two server behind a load ba... by giuces Engager in Getting Data In 01-11-2021 0 5	0	5
Splunk universal forwarder issues in windows Hi All - I have installed SPlunk master in Linux and universal forwarder in Windows box.And Also opened all Ports .Cu... by Sravane Observer in Getting Data In 01-11-2021 0 5	0	5
Error in 'litsearch' command: Your Splunk license expired or you have exceeded your license limit too many times. Renew Hi @gcusello ,We are getting an error "[aapxxxx01] Streamed search execute failed because: Error in 'litsearch' comm... by rahul2gupta Path Finder in Getting Data In 01-11-2021 0 4	0	4