Getting Data In

Community Activity

Receiving multiple json events as one from third party application Hi everyone,I`m receiving multiple JSON events as one event from third party application as showned below. {"metric":... by aitymm Loves-to-Learn in Getting Data In 12-19-2020 0 0	0	0
just started learning splunk How do I resolve this error -> happens with both linux and macThe TCP output processor has paused the data flow. Forw... by deepmis New Member in Getting Data In 12-19-2020 0 4	0	4
Splunk Scripted Inputs ingesting only Headers Hi All,Splunk is ingesting only a portion of the scripted input ps.sh from my *nix os TA, and I don't know why.Before... by rmccullagh Explorer in Getting Data In 12-17-2020 0 3	0	3
Ingesting AlienVault OTX feed service with Splunk? Someone recently asked me how they could tie Splunk in with the free AlientVault OTX feed service. Has anyone ever d... by mitzkowitz_splu Splunk Employee in Getting Data In 12-17-2020 2 2	2	2
Removing subset of logs from index while maintaining route to syslog server Windows security logs are sent to a heavy forwarder, which is configured to send these logs to a syslog server in add... by timori Loves-to-Learn Lots in Getting Data In 12-17-2020 0 0	0	0
IP Address of Search Head I'm configuring one computer as a forwarder and another as the receiver. How do I find the IP address that the forwar... by Analysis19 Engager in Getting Data In 12-17-2020 0 3	0	3
Need help in extracting network events before indexing I have a file with full of logs from different sources. But i want to monitor only logs from a particular network dev... by sivaranjiniG Communicator in Getting Data In 12-17-2020 0 3	0	3
splunk universal forwarder HiActually we are forwarding data from 2 forwarders servers to the indexer server, from one forwarder server we are... by kowsikreddy Loves-to-Learn in Getting Data In 12-17-2020 0 2	0	2
Getting OCI Audit Logs into Splunk Hello,Our infrastructure is currently hosted on Oracle Government Cloud and we are trying to determine a way to get t... by adnankhan5133 Communicator in Getting Data In 12-16-2020 1 0	1	0
Reduce clustered index COLD which becomes oversized over time Hello guys,one clustered index is now oversized due to lower indexed data since several months and data froze over ti... by splunkreal Motivator in Getting Data In 12-16-2020 0 0	0	0
Missing "Ingest Settings" tab in the asset settings in Splunk Phantom Hi, I'm getting this message from save_container():"Container addition failed, reason from server: Asset myasset (7) ... by ayuri Engager in Getting Data In 12-16-2020 0 0	0	0
CSV file not extracting properly when there is empty value for a field Hi there,I have a CSV file with the following header and values in it. There are some empty values for a field too. T... by satvika New Member in Getting Data In 12-16-2020 0 1	0	1
Is it possible to use sourcetype and host stanzas for the same event? We have the varonis ta and its props has the following section - [varonis:ta] However, each varonis server that s... by danielbb Motivator in Getting Data In 12-16-2020 0 1	0	1
Splunk and Dynatrace Integration Hello All,We have a requirement of integration of Dynatrace (SAAS service) and Splunk 8.0.0(On Premise).Currently we ... by ManjunathN Engager in Getting Data In 12-16-2020 0 0	0	0
whitelist blacklist inputs.conf not respected Hello guys,we used this in inputs.conf according to the Splunk CIM compliant addon for Unix and Linux :[monitor:///va... by splunkreal Motivator in Getting Data In 12-16-2020 0 1	0	1
Integrating logs from Fortinet devices with Splunk Hello Everyone on Splunk Forum.I want to integrate logs from following Fortinet devices1) Switch, model: FortiSwitch1... by d4wc3k Path Finder in Getting Data In 12-16-2020 0 0	0	0
Is it possible to Monitor network ports using Splunk Universal Forwarder? I have a Bluecoat device i want to monitor that device logs using UF. after have opened port from bluecoat to a relay... by sivaranjiniG Communicator in Getting Data In 12-15-2020 0 1	0	1
Why does Modular input script hang Why do Modular inputs like crowdstrike stream hang so often? by sean193 Explorer in Getting Data In 12-15-2020 0 0	0	0
Continuous monitoring doesn't work when the size of the file is constant Hi guys;I want to monitor a single file with a universal forwarder. It works perfectly till the size of the file rea... by mzn1979 Explorer in Getting Data In 12-15-2020 0 0	0	0
Splunk suddenly stops ingesting data. Hi All, I have a scripted output file that splunk is ingesting via a heavy forwarder. Since last few weeks, I am fa... by soumdey0192 Explorer in Getting Data In 12-15-2020 0 4	0	4
Universal forwarder for Linux had mixture of permissions for root and splunk. Hello, I am working with a Linux system and a universal forwarder. Operating System: Debian GNU/Linux 10 (buster) ... by splunktrainingu Communicator in Getting Data In 12-15-2020 0 1	0	1
Indexing Ubisecure Ubilogin logs? HiHave anyone indexed Ubisecure's Ubilogin audit or diag files? Basically those are CSV files, BUT depending of event... by isoutamo SplunkTrust in Getting Data In 12-15-2020 0 0	0	0
Connecting Azure Monitor, log analytics, Application Insights with Splunk How to link Azure Monitor with Splunk? How to link Azure log analytics workspace with Splunk? How to link Azure Appli... by prakash0046 New Member in Getting Data In 12-14-2020 0 4	0	4
Issues with XML Linebreaker Hello fellow splunkers,right now I'm working through the 7 labs for SE II which are necessary to be able to start the... by avoelk Communicator in Getting Data In 12-14-2020 0 1	0	1
Valid JSON not being broken up into individual events I've checked a number of threads about breaking JSON files and I've tried a number of offered solutions and none seem... by BongoTheWhippet Path Finder in Getting Data In 12-14-2020 0 1	0	1