Getting Data In

Community Activity

Index internal logs locally and forward all other logs As title suggest, i want to index internal logs only and forwards all other logs to forwarders or idxs.Here is the se... by k31453 Explorer in Getting Data In 11-26-2020 0 5	0	5
Regex help for a newby please Hi All, looking for some assistance on what a regex would look like when every new line starts with an open bracket ... by markturner14 Explorer in Getting Data In 11-26-2020 1 3	1	3
Bash echo command no ingested by splunk, whle others are. I have these as the final lines of my bash script:response=$(curl -H "Authorization: Bearer $access_token" -H "Accept... by Dpeedahnb Explorer in Getting Data In 11-26-2020 0 4	0	4
how to forward JSON data to splunk Properly I have a json file like below, i need to broke it up in to events{"env":"UAT","label":"jenkins-17887.api.v2.dm.btc","... by kirrusk Communicator in Getting Data In 11-25-2020 0 6	0	6
Question about Inputs.conf Hello,I have made a new app under deployment apps with the following inputs.conf [monitor:///root/something/somethin... by zekiramhi Path Finder in Getting Data In 11-25-2020 0 10	0	10
Why is a field which doesn't exist in _raw data being added to an index? Eg : index = userinformation _raw doesnt have any field or value related to field "ue". But "ue" is being shown i... by vn_g Path Finder in Getting Data In 11-25-2020 0 2	0	2
Send events from TA to different indexes depending on hostname Hi Splunkers. What approach are people using to send events from a TA to different indexes depending on what the hos... by torowa Path Finder in Getting Data In 11-25-2020 0 2	0	2
Send csv data to Http Event Collector Hi,I want to send a csv pure data file as it is to splunk via Http Event Collector. How can I do it? Can I send it to... by learnkhru New Member in Getting Data In 11-24-2020 0 3	0	3
Forwarding data from Heavy forwarder to syslog server exclude audit.log We're trying to do:Collect Event Log by REST input on Splunk Enterprise 8.1 --> HF (v8.1 on Windows) --> external Sys... by eorMsisseL Engager in Getting Data In 11-24-2020 1 1	1	1
CLONE_SOURCETYPE not honoring REGEX? While attempting to clone (and mask) events that belong to select source patterns,. the CLONE_SOURCETYPE doesn't hono... by manojnair Engager in Getting Data In 11-24-2020 0 0	0	0
How to add a button in each row of a table? Hi everyone! I want to add a button to each row in my table under a field named 'details'. When this button is clicke... by christinaef07 Loves-to-Learn Everything in Getting Data In 11-24-2020 0 2	0	2
Windows Monitoring Stanza help Hello I have the below location to be monitored in a windows machine D:\Tab\Tableau Server\data\tabsvc\logs\appzookee... by vrmandadi Builder in Getting Data In 11-23-2020 0 3	0	3
Refresh SplunkUF Credentials Package I downloaded the SplunkUF Credentials Package file by following the instructions here, but I exposed it to the public... by rainbowtiger939 Engager in Getting Data In 11-23-2020 0 1	0	1
how can I put a "+" in monitor:// path ? Hello, I have the following stanza in input.conf [monitor:///ccv/app/oracle/diag/asm/+asm/+ASM/trace/alert_+ASM.l... by ktn01 Path Finder in Getting Data In 11-23-2020 0 6	0	6
Query to list data inputs remote monitor from deployment server Hello guys,is there a way to query all data inputs as seen below?Thanks. by splunkreal Influencer in Getting Data In 11-23-2020 0 0	0	0
Universal Forwarder - WMI Issue - "The RPC server is unavailable." HRESULT=800706BA Hi guys,I'm using a Universal Forwarder in a remote location (different network) to try and get data into my Splunk i... by driva Path Finder in Getting Data In 11-23-2020 0 1	0	1
syslog host transform base on event I have syslog server and installed HF,when send logs from HF to indexer, the host is represent base on Event host,can... by bambarit Explorer in Getting Data In 11-22-2020 1 5	1	5
Ingesting data from blackbox Hi Splunkers,Just want to know if you guys experienced ingesting data from blackbox? I just want to know how to integ... by ejmindanao Explorer in Getting Data In 11-22-2020 0 0	0	0
Ingest only one column from csv Hi Experts,I am looking for a method to Ingest only one column from csv and the rest of the columns should be ignored... by email2vamsi Explorer in Getting Data In 11-22-2020 1 1	1	1
Host overriding on syslogs Hi at all,I have a strange problem:I have syslogs from an appliance Imola Tiesse (never known before now!).in these s... by gcusello SplunkTrust in Getting Data In 11-22-2020 0 3	0	3
Do I configure outputs.conf on our forwarder or indexer to forward data to a third-party system? Hello I am using a heavy forwarder to forward data to an INDEXER which is successful. I now need to forward all the ... by saifuddin9122 Path Finder in Getting Data In 11-22-2020 1 7	1	7
CyberArk logs to Splunk via Syslog-ng Hello Everyone,We have configured CyberArk logs to index into splunk based on the instructions provided in the splunk... by bharathkumarnec Contributor in Getting Data In 11-21-2020 0 4	0	4
How to add an old ticketing system data to splunk? I had the idea to upload our old ticketing systems data into splunk and create dashboards to search through the infor... by splunk_user4 Explorer in Getting Data In 11-20-2020 0 1	0	1
Can we get Gogs data in Splunk ? We have installed Gogs in our architecture. We are using Gogs as a VCS. Now we are interested in getting data in Splu... by jacob1212 Engager in Getting Data In 11-20-2020 0 2	0	2
WinNetMon Blacklist RemoteHostName Is it possible to not ingest logs related to a specific RemoteHostName? I have tried:[WinNetMon://winnetmon]...blackl... by mdonovan Loves-to-Learn in Getting Data In 11-20-2020 0 0	0	0