Getting Data In

Start a Conversation

Discussions

Start a Conversation

Thread Info

How to remove everything after a specific character from a field

Hi I want to remove everything after a some characters like ? OR & when they come in a field. For example - /temp/...

by Explorer in

how to export csv with BOM ?

Hi, I have a csv file encoded UTF-8 from Scheduled Search. And MS Excel couldn't read the file Because without BOM...

by Explorer in

find only values in 2 index files

I have a index of my gcp firewalls (all of them) and I need to take that and match it against another dataset (firewa...

by Engager in

How to monitor specifics AD groups using Account_Name?

Hello Guys, I would like your help. I need to monitor specifics AD Security Groups when someone is add to those gr...

by New Member in

Splunk Forwarder Unable to communicate with Server

I am running RHEL 7 server, and noticed that my splunk forwarder client is not reporting in. I am running iptables. H...

by New Member in

Can I collect application logs from Azure to Splunk?

I already know that I can collect application logs into Azure application insight, and use a storage account streamin...

by Explorer in

Universal forwarder Sourcetype name changes itself

Hello, a Universal Forwarder (7.0.1) is watches an textfile. The parameter are following: [default] host = RBD9...

by New Member in

how to allow multiple source on udp 514 port

we want to receive data from multiple devices on udp port 514, but splunk interface not allowing to second source on ...

by New Member in

set year to timestamp

Hello I'm getting logs from my customer and the timestamp there is day and month without year. that case causes sp...

by Communicator in

How can we delete particular data from KVStore using REST API/ CURL without using _key?

Here, the requirement is to delete all the data from KVStore having the particular KVStore filed value. Example: I...

by SplunkTrust in

Multiple json events coming as one

I have multiple events which are coming as one and I need to separate them into separate events in order to create a...

by New Member in

Dynamically filter table data

I have a table with 6 columns of information that I am trying to filter dynamically: date_time src_MAC dst_MAC src...

by Explorer in

How to modify sourcetype for forwarded windows event

For some reason, the sourcetype of my forwarded windows events are now set to WinEventType instead of the usual "Wind...

by Loves-to-Learn Lots in

Data upload from splunk ui is successful, but data is not appearing in search

Hi, I have uploaded the data to splunk, but while searching the data doesnt appear, I have shared the screenshots as ...

by Explorer in

How to integrate BSM 9.24 into splunk ?

Hi Im a new splunk user, i have a requirement to integrate Microfocus BSM 9.24 logs into splunk. Can someone help me ...

by Engager in

Is there a way to forward parsed logs in ELK Stack to Splunk?

Hello, We have integrated ELK Stack with our application(DNS Firewall) previously for forensics.Now, we want to re...

by Engager in

Json line breaking issue

Hi, I have exactly same issue as below https://answers.splunk.com/answers/513703/json-breaking-single-string-into...

by Communicator in

How to write to reverse DNS lookups in Splunk Cloud?

Is there a way to reverse query IP addresses in Splunk Cloud? If so how? Please share the documentation.

by New Member in

How to connect to apigee edge free account using Splunk

Apigee Edge is API management platform. It is both http and tcp based and it sends to syslogs. Can I install Splun...

by Explorer in

Splunk Windows Registry Monitor not showing any events

Hey, I want to monitor the changes in my Windows Registry. I have did the needed procedures and steps however the ...

by Engager in

Get Updates on the Splunk Community!

Getting Data In

Discussions

How to remove everything after a specific character from a field

how to export csv with BOM ?

find only values in 2 index files

How to monitor specifics AD groups using Account_Name?

Splunk Forwarder Unable to communicate with Server

Can I collect application logs from Azure to Splunk?

Universal forwarder Sourcetype name changes itself

how to allow multiple source on udp 514 port

set year to timestamp

How can we delete particular data from KVStore using REST API/ CURL without using _key?

Multiple json events coming as one

Dynamically filter table data

How to modify sourcetype for forwarded windows event

Data upload from splunk ui is successful, but data is not appearing in search

How to integrate BSM 9.24 into splunk ?

Is there a way to forward parsed logs in ELK Stack to Splunk?

Json line breaking issue

How to write to reverse DNS lookups in Splunk Cloud?

How to connect to apigee edge free account using Splunk

Splunk Windows Registry Monitor not showing any events

There's No Place Like Chrome and the Splunk Platform

The Great Resilience Quest: 5th Leaderboard Update

Devesh Logendran, Splunk, and the Singapore Cyber Conquest

HTTP Event Collector Connection Actively Refused a...

Behaviour of app.conf with deployment server

Ingest Actions error

Splunk OTEL Collector throwing Timeout and Authent...

HEC stopped working