Getting Data In

Community Activity

configure universal forwarder with cluster master Hey,i have 3 indexes and 3 Search heads.i also have a cluster master server.i'm trying to connect my universal-forwar... by dordavid Explorer in Getting Data In 08-16-2020 0 7	0	7
index same file but where the file name is different in splunk Hi,I am currenlty monitoring ///asbc/logs/*.logand this folder gets updated everyday with a file called myfile_ddmmyy... by surekhasplunk Communicator in Getting Data In 08-16-2020 0 2	0	2
Splunk Forwarder issue A forwarder which was working before has stopped for up to a month now. After checking, it is confirmed that the forw... by saotaigiri Path Finder in Getting Data In 08-14-2020 0 4	0	4
Regex match that assign headers to line I have a log file that has 3 different types of headers. There is a unique id field per line notifying me of what the... by nikorc Loves-to-Learn Lots in Getting Data In 08-14-2020 0 4	0	4
Zoom logs and Timestamps Looking at Zoom log timestamps... I'm trying to figure out timestamps (and accuracy of _time).The Zoom 'add-on' scene... by wryanthomas Contributor in Getting Data In 08-14-2020 0 0	0	0
How to run multiple universal forwarders on a single Linux host? I am trying to install 2 universal forwarders on a single Linux host. I read a few articles and changed the httpport ... by tusharsaran1 Path Finder in Getting Data In 08-14-2020 4 39	4	39
Windows Registry monitoring works for local host not on universal forwarder Hi Team,The following inputs.conf works on localhost to monitor a registry key, but not working on the universal forw... by VasukiPramod Explorer in Getting Data In 08-13-2020 0 0	0	0
Convert table generated by JSON into a timeline I have a service that is dropping a json object every 5 minutes. These objects contain multiple KeyValuePair Categori... by topherbirth Explorer in Getting Data In 08-13-2020 0 2	0	2
Why is cluster master not showing custom indexes in Indexer Clustering:Master Node Dashboard? I have a test environment and a production environment and have what appear to be identical settings with different r... by mdsnmss SplunkTrust in Getting Data In 08-13-2020 0 4	0	4
Index csv files with grouped fields? HiI'm using Universal forwarder and trying to consume a complex csv file. Usually this works OK by configuring props.... by kjell_ml New Member in Getting Data In 08-13-2020 0 2	0	2
JSON with Timestamp (syslog) Hello,i am getting the following json via syslog and i ingest it to splunk.Aug 13 12:45:40 10.200.7.200 {"Status": "F... by poisar Explorer in Getting Data In 08-13-2020 0 1	0	1
Syslog and field extraction(regex) HelloI am getting my vpn logs in syslog format on my single splunk deployment instance and I am having trouble figuri... by splunktrainingu Communicator in Getting Data In 08-13-2020 0 7	0	7
Get data from WMI to splunk forwarder I've a scenario where we have 300 windows servers, due to few reason we are not able to install splunk forwarder.The... by hectorvp Communicator in Getting Data In 08-12-2020 0 0	0	0
What is the correct URL to set up HTTP Event Collector on Spunk Cloud? Hi there, Perhaps a beginner question, but I am not sure what URL I have to call to send my event data. I know the U... by JosIJntema Explorer in Getting Data In 08-12-2020 1 11	1	11
Splunk Events getting truncated/choppedoff at the begining My Event logs in splunk are getting truncated in the front part. Is it possible to spllit lines based on below cond... by vijayakumarkb Explorer in Getting Data In 08-12-2020 0 15	0	15
Is it possible to configure zoom or Teams add-on on IDM ? We are setting up Splunk RWI solution and have been request by the Splunk engineer to open ports 4443 and 4444 to all... by damode Motivator in Getting Data In 08-12-2020 0 2	0	2
New CSV file not syncing with index I'm facing problem with Splunk like there is an index having a folder of some csv file as a data input. when i'm add... by sshahu Observer in Getting Data In 08-12-2020 0 3	0	3
how to hide "ALL" from selecting in dashboards page? Hi I am not sure how to put up this question but all I am trying to do is basically hide the below "All" option from... by pavanae Builder in Getting Data In 08-12-2020 0 1	0	1
Specifiy input stanzas by host Hi,I've created an app to be able to monitor some directories for two hosts. The stanzas are completely identical exc... by esalmon Explorer in Getting Data In 08-12-2020 0 1	0	1
Troubleshoot the Splunk Add-on for Microsoft Cloud Services Hi ,I am trying to troubleshoot the splunk Add-on for Microsoft Cloud Services.I checked at the following location bu... by rahul2gupta Path Finder in Getting Data In 08-11-2020 0 0	0	0
CSV field header/label based on a value in column. So I have a csv file that is generated while a program runs. The 1st 4 columns are same headers. DATE,TIME, LOCATION,... by nikorc Loves-to-Learn Lots in Getting Data In 08-11-2020 0 2	0	2
Salesforce Add-on - Lost my server and trying to restore configuration files for app I had lost my search-head and cluster-master and when I tried to restore the files I already had backed up. The app ... by mfbma Observer in Getting Data In 08-11-2020 0 0	0	0
multiple outputs.conf and inputs.conf on the same forwarder Hello,I have the case that I am sharing the UFs with the Splunk SIEM solution, however I work for another project col... by damucka Builder in Getting Data In 08-11-2020 0 2	0	2
Nullqueue not working Here is a link the dataset and the regex. It is working on regexr but not in transforms.conf. I have tested by usin... by byeb1264 Explorer in Getting Data In 08-11-2020 0 6	0	6
How split outputs in splunk Hello,Running Splunk Universal Forwarder 7.3.6 (build 47d8552a4d84) on CentOS 7.I am sending two logs -- suricata and... by virginiatech199 Explorer in Getting Data In 08-11-2020 0 6	0	6