Getting Data In

Community Activity

Splunkd Service in splunk entprise 8 after installation of splunk enterprise 8.0, the Splunkd Service cannot restart by engrimranzakir Explorer in Getting Data In 01-13-2021 0 2	0	2
Change log storage time When the indexes were created, they were created by default.Now that I needed to know how long a log went from hot t... by splunkcol Builder in Getting Data In 01-12-2021 0 1	0	1
Wrongly merged Events/permanently blocked tcpout queue with Intermediate Universal Forwarder. Using Universal forwarder as intermediate forwarder for source universal forwarders can causeEvents being merged into... by hrawat Splunk Employee in Getting Data In 01-12-2021 1 5	1	5
inputs.conf `monitor` (re)ingest historic data Hello, I have an inputs.conf monitor stanza configured to ingest syslog data that has been written to a file with rs... by mbrownoutside Path Finder in Getting Data In 01-12-2021 0 3	0	3
Report all Logon Activity != United States I'd like to pull a logon report that shows me any logon activity that is != to the United States. Any help is great... by itsmevic Communicator in Getting Data In 01-12-2021 0 2	0	2
Duplicate Data In Sourcetype Hello,I have two Domain Controllers that are producing a lot of data, pushing my daily usage over the limit. I saw t... by jbender72 Path Finder in Getting Data In 01-12-2021 0 2	0	2
Splunk HTTP Event Collecter Spring Boot Log4j2 Causing Application to hang I have a Spring Boot Application using an HTTP Event Collector to send logs to splunk using a Log4j2 Appender. https:... by jaynish97 Observer in Getting Data In 01-12-2021 0 0	0	0
Syslog Data Reaching Forwarder? Hello, I need to check to see if Syslog data is reaching my forwarders. What would be the best query to use to check... by itsmevic Communicator in Getting Data In 01-12-2021 1 2	1	2
Last Time Heavy Forwarder received logs from it's Source I've pieced together some SPL that shows me the last time the forwarder has sent its log data, but need to convert th... by itsmevic Communicator in Getting Data In 01-11-2021 0 1	0	1
deleting misconfigured hosts Hey guys I've been having trouble finding documentation about removing indexed data.After looking through the "meta w... by splunk_user4 Explorer in Getting Data In 01-11-2021 0 1	0	1
Monitoring Docker containers like in the video Hello,Where can we find instruction to setup Docker infrastructure monitoring like in the video below?https://www.spl... by adam0z Observer in Getting Data In 01-11-2021 0 1	0	1
Universal forwarders ingestion behind F5 LB Hi guys,I should find a solution to ingest a file on a network share that is managed from two server behind a load ba... by giuces Engager in Getting Data In 01-11-2021 0 5	0	5
Splunk universal forwarder issues in windows Hi All - I have installed SPlunk master in Linux and universal forwarder in Windows box.And Also opened all Ports .Cu... by Sravane Observer in Getting Data In 01-11-2021 0 5	0	5
Error in 'litsearch' command: Your Splunk license expired or you have exceeded your license limit too many times. Renew Hi @gcusello ,We are getting an error "[aapxxxx01] Streamed search execute failed because: Error in 'litsearch' comm... by rahul2gupta Path Finder in Getting Data In 01-11-2021 0 4	0	4
Is there any automated way to check or validate magix six parsing attributes have been configured ? We have a massive Splunk environment and QA process is pretty stringent when it comes to data onboarding. As part of ... by damode Motivator in Getting Data In 01-09-2021 0 0	0	0
Ingestion of hierarchical XML logs I am trying to index hierarchical XML log files into Splunk. The file contains several groups of data linked by ID fi... by Ed11375 Explorer in Getting Data In 01-09-2021 0 2	0	2
Sending data to two splunk cloud instances from Universal Forwarder We just got a new splunk cloud instance/stack (we now have a total of 2 splunk cloud instances) and attempting to sen... by dloszews Explorer in Getting Data In 01-09-2021 0 2	0	2
Create Splunk Table from nested json output Hi,Can someone please help me create a Splunk Table from the below data: { "cd":[ { "cn":"cust-1", ... by niddhi Explorer in Getting Data In 01-08-2021 0 2	0	2
Syslog (Snare) WinEvent and Heavy Forwarder without UF on syslog So I'm trying to get to a HEC/syslog type environment. Please don't tell me that sending WinEvents via syslog is dumb... by mlinde Explorer in Getting Data In 01-08-2021 1 1	1	1
DBConnect Hi,i have connected DBConnect with SQL Servers and successfully configuring the SQL server connection on DBConnect. ... by mshakeb Loves-to-Learn Everything in Getting Data In 01-08-2021 0 2	0	2
Splunk ignores date time range after a few queries I've been having this weird problem where Splunk suddenly starts to ignore the date-time ranges I enter after executi... by enverb New Member in Getting Data In 01-08-2021 0 5	0	5
disk usage from the monitoring console does NOT match the reality hi fellas I am experiencing an unexpected behavior when trying to monitor disk usage. Hopefully you can explain why ... by asimagu Builder in Getting Data In 01-07-2021 2 10	2	10
Microsoft Azure Add on for Splunk Inputs config page not loading I am trying to upgrade to the latest version of this app but the inputs setup page is Loading forever.Microsoft Azure... by Azeemering Builder in Getting Data In 01-07-2021 0 1	0	1
"ghost" sourcetype during sourcetype override We are using HEC to ingest logs from a cloud platform. Environment details : HEC running on a windows instance of Sp... by vik_splunk Communicator in Getting Data In 01-07-2021 0 5	0	5
Splunk forwarder unable to fetch file starting with I have set my forwarder to fetch data from jenkins jobs folder, It fetches all the files excpt build.xml which has co... by sdebasi Loves-to-Learn Lots in Getting Data In 01-06-2021 0 0	0	0