Getting Data In

Community Activity

How to modify sourcetype for forwarded windows event For some reason, the sourcetype of my forwarded windows events are now set to WinEventType instead of the usual "Wind... by minliang Loves-to-Learn Lots in Getting Data In 04-19-2020 0 1	0	1
Data upload from splunk ui is successful, but data is not appearing in search Hi, I have uploaded the data to splunk, but while searching the data doesnt appear, I have shared the screenshots as ... by jagdish0886 Explorer in Getting Data In 04-18-2020 0 2	0	2
How to integrate BSM 9.24 into splunk ? Hi Im a new splunk user, i have a requirement to integrate Microfocus BSM 9.24 logs into splunk. Can someone help me ... by asmafirdous Engager in Getting Data In 04-17-2020 0 0	0	0
Is there a way to forward parsed logs in ELK Stack to Splunk? Hello, We have integrated ELK Stack with our application(DNS Firewall) previously for forensics.Now, we want to repl... by ganesh1793 Engager in Getting Data In 04-17-2020 2 3	2	3
Json line breaking issue Hi, I have exactly same issue as below https://answers.splunk.com/answers/513703/json-breaking-single-string-into-m... by surekhasplunk Communicator in Getting Data In 04-17-2020 0 2	0	2
How to write to reverse DNS lookups in Splunk Cloud? Is there a way to reverse query IP addresses in Splunk Cloud? If so how? Please share the documentation. by mrobleto New Member in Getting Data In 04-17-2020 0 1	0	1
How to connect to apigee edge free account using Splunk Apigee Edge is API management platform. It is both http and tcp based and it sends to syslogs. Can I install Splunk ... by himanish2008 Explorer in Getting Data In 04-17-2020 1 1	1	1
Splunk Windows Registry Monitor not showing any events Hey, I want to monitor the changes in my Windows Registry. I have did the needed procedures and steps however the in... by Zyon Engager in Getting Data In 04-17-2020 0 2	0	2
Windows Forwarded Events from UF on WEC are not being ingested Hi I have a Windows Server Collecting WinEventLogs from a number windows host endpoints. I was told the Server was a... by Glasses Builder in Getting Data In 04-17-2020 0 0	0	0
Splunk as Datasource for Grafana? Hello, I'd like to import data from Splunk into Grafana so I can use Grafana's visualization and Splunk as a data s... by gabenav11 Explorer in Getting Data In 04-17-2020 0 8	0	8
REST GET request to get list of AD users Hello, I'm trying the following request in Postman to send a request to get the list of Active Directory users: http:... by michellertx New Member in Getting Data In 04-17-2020 0 2	0	2
csv headers are not getting listed Hello, I have clonned the CSV source type in Splunk and created a new CSV sourcetype as Alpha_csv and configured to... by Gowthamdevaraj New Member in Getting Data In 04-17-2020 0 2	0	2
could not use strptime to parse timestamp Feb 18 18:36:20 smtp2 sm-mta[17872]: l1J0a3fO017872: discarded I have one sample event. when I this it gives me "co... by riqbal47010 Path Finder in Getting Data In 04-17-2020 0 5	0	5
change date of import data hi i'm copy log of my application to splunk server with script (i don't use forwarder here) now problem is log send... by indeed_2000 Motivator in Getting Data In 04-17-2020 0 3	0	3
How does splunk reassamble chunks of data coming from UFs in an indexer cluster ? By default, UFs are sending chunks of 64kB data and spread these over multiple indexers. But indexers are supposed to... by yoho Contributor in Getting Data In 04-17-2020 0 4	0	4
How can I get more than 10,000 lines into a single event? I want more than 10,000 lines to merge and show in a single event. [tally_nightly_prd] SHOULD_LINEMERGE=true NO_BINA... by payal23 Path Finder in Getting Data In 04-16-2020 0 10	0	10
Rex pattern to extract unc path from xml I like to extract the UNC path from a log, below a portion from the file : ;<soa:FileSystem identifier="8ec65285-11ac... by splunk2019tlmd Engager in Getting Data In 04-16-2020 0 3	0	3
Error Message; The search for datamodel 'abc_123' failed to parse, cannot get indexes to search? I have two indexers in peer that share 1 index, and 1 data model. Both indexers are configured identically. Both da... by mcrawford44 Communicator in Getting Data In 04-16-2020 4 11	4	11
how to force all data to go to a different index? How do I force all data to go to a different index without inserting index=foo for all input stanzas? by matt Splunk Employee in Getting Data In 04-16-2020 0 2	0	2
500 Internal Server Error out of splunklib/binding.py I'm seeing this error message stream when the TA-ObserveIT tries to get what I think is the configuration information... by jwhughes58 Contributor in Getting Data In 04-16-2020 0 0	0	0
Why am I getting "404 Not Found" for every REST API call? I am using the following query as per documentation: curl -k -u username:password http://myhosthere:8000/services/se... by nsshey Explorer in Getting Data In 04-16-2020 0 4	0	4
KV_MODE not extracting xml fields I have an app on a deployment server that runs a script and has splunk ingest the output which is valid xml. I've add... by willcwhite Explorer in Getting Data In 04-16-2020 0 6	0	6
Getting containerized universal forwarder to forward host log files I would like to be able to run the forwarder in a container, and have it forward my host logs from /var/log. So I mo... by patrickkutch New Member in Getting Data In 04-16-2020 0 0	0	0
Splunk indexed data into Azure datalake storage or Blob storage Is there any way to send already indexed splunk data (from one index) into Azure data lake storage or Azure Blob stor... by saikiran334 Explorer in Getting Data In 04-16-2020 0 0	0	0
Change index depending on host Hi all, I'm trying to split Windows events into different indexes at index time depending on the host which is sendi... by pbalbasdtt Path Finder in Getting Data In 04-16-2020 0 7	0	7