Getting Data In

Community Activity

multiple outputs.conf and inputs.conf on the same forwarder Hello,I have the case that I am sharing the UFs with the Splunk SIEM solution, however I work for another project col... by damucka Builder in Getting Data In 08-11-2020 0 2	0	2
Nullqueue not working Here is a link the dataset and the regex. It is working on regexr but not in transforms.conf. I have tested by usin... by byeb1264 Explorer in Getting Data In 08-11-2020 0 6	0	6
How split outputs in splunk Hello,Running Splunk Universal Forwarder 7.3.6 (build 47d8552a4d84) on CentOS 7.I am sending two logs -- suricata and... by virginiatech199 Explorer in Getting Data In 08-11-2020 0 6	0	6
db connect event time mismatch Hello,I have a query regarding getting data in using DB Connect App. I am using Splunk cloud instance and DB Connect ... by madhav_dholakia Contributor in Getting Data In 08-11-2020 0 5	0	5
How to filter data from a single file and write to two different indexes? I am trying to filter a set of data from a single file with the below conditions and send the filtered data to differ... by payal23 Path Finder in Getting Data In 08-11-2020 0 5	0	5
Configure Azure Storage Blob Modular Input for Splunk Add-on for Microsoft Cloud Services Hi @gcusello ,Need your help on this,trying to configure Azure Storage Blob Modular Input for Splunk Add-on for Micro... by rahul2gupta Path Finder in Getting Data In 08-10-2020 0 0	0	0
epoch time I want the difference between two timestamps in epoch.My fields are like:target.received.end.timestamp1597115254203ta... by smahuja Explorer in Getting Data In 08-10-2020 0 2	0	2
Unable to search data unless all time is specified Hi I am unable to search my data unless I specify all time. by priyanka_231019 Explorer in Getting Data In 08-10-2020 0 3	0	3
Data Onboarding Strategy I would like to hear from other admins on how they are keeping up with high demand of data onboarding requests into t... by pradeepkumarg Influencer in Getting Data In 08-10-2020 0 3	0	3
External Forwarder sending to DMZ Heavy Forwarder (9997) All,I am trying to send to from an external forwarder to a DMZ Heavy Forwarder that is behind a firewall w/ 9997 open... by jordanking1992 Path Finder in Getting Data In 08-10-2020 0 1	0	1
VMware addon in unable to collect data from vcenter in distributerd environment Hi Everyone,I am suppose to configure a VMware add-on in my environment to collect data from Vcenters.I have been con... by RAB16 Observer in Getting Data In 08-10-2020 0 0	0	0
rsyslog configuration and receiving results on different port Hi,I have rsyslog configured and receive different syslog data on different ports. but is there a log file where this... by surekhasplunk Communicator in Getting Data In 08-10-2020 0 0	0	0
Splunk_TA_aws duplicated events HiI have Splunk_TA_aws installed on the heave forwarder the input are [aws_s3://aws_dome9_logs_amdocsdome9logs]aws_a... by rayar Contributor in Getting Data In 08-10-2020 0 3	0	3
Unable to index Windows registry monitoring (Certain Registry values) HiI have a requirement where I need to monitor certain registry key values on Windows server 2016. I am using the bel... by santosh_scb Path Finder in Getting Data In 08-09-2020 0 0	0	0
WinRegMon - Inputs.conf works on localhost but not on universal forwarder. Hi Team,The following inputs.conf works on localhost to monitor a registry key, but not working on the universal forw... by VasukiPramod Explorer in Getting Data In 08-09-2020 0 0	0	0
How do you troubleshoot missing windows event logs? I have been noticing that some windows event logs are not appearing in the Splunk search. For example the event code ... by ABasit10 Observer in Getting Data In 08-09-2020 0 5	0	5
Onboard logs from McAfee EPO Cloud I want to onboard McAfee EPO Cloud data. While there is an add-on available for on-prem solution of McAfee EPO, it do... by priyanka_231019 Explorer in Getting Data In 08-09-2020 0 0	0	0
Module 4 data upload fail without errors I have followed module 4 instructions twice (once I manually found the data add section) to upload data.All data uplo... by alancproctor Engager in Getting Data In 08-08-2020 0 1	0	1
Same data input two apps? Is it possible to share a sourcetype'd data between two apps?I have pfsense sending both firewall logs and Suricata e... by token2 Path Finder in Getting Data In 08-08-2020 0 1	0	1
TA-pfsense + Suricata + Barnyard2 gone + eve json = oh fun TL:DR- How do I specify in the props.conf that for "pfsense:suricata" to then use Splunk's json extraction?Situation ... by token2 Path Finder in Getting Data In 08-08-2020 0 6	0	6
Is it possible to pseudonymize incoming data in Splunk? Hi forum, I would like to know if and how it is possible to pseudonymise incoming data in Splunk. I know that I can ... by schose Builder in Getting Data In 08-07-2020 2 11	2	11
How to blacklist events for a specific event code and task category? Trying to blacklist specific windows event logs based on event code and task category, but doesn't work . [WinEventL... by nmohammed Builder in Getting Data In 08-07-2020 0 6	0	6
Module 4 lab fundamentals using Splunk Cloud Hello,Module 4 lab fundamentals using splunk cloud there is no icon for "add data."Yes, I'm logged in as the admin.Ag... by alancproctor Engager in Getting Data In 08-07-2020 0 1	0	1
By using command line how can inject zip file Axxxxxxxxx@gmail. by Lateef111 Observer in Getting Data In 08-07-2020 0 1	0	1
Splunk dbConnect inputs I am using Splunk dbConnect to collect data from database. While configuring the connection, set the timezone as Etc... by chaitali_1994 Engager in Getting Data In 08-07-2020 0 3	0	3