Getting Data In

Community Activity

	Monitoring Console - Deployment-Wide Averaged System Load Average How would we interpret the "Deployment-Wide Averaged System Load Average" Monitoring console indexing metrics? When ... by gduggan1 Path Finder in Getting Data In 04-15-2020 0 0	0	0
	How to index an XML file with unix time format I have XML files in my PC that I want to index them in Splunk, I need the inputs and the props.conf changed. I did ev... by almotasim90 New Member in Getting Data In 04-15-2020 0 1	0	1
	Unable to filter specific events with props.conf & transforms.conf I've been reading into how to filter incoming events between the Parsing and Indexing stages of our data pipeline and... by marshallsuk Engager in Getting Data In 04-15-2020 0 3	0	3
	Source type for dmesg log file I was wondering if anyone had a good solution for a proper source type for dmesg? Or failing that some way of handli... by scottj1y Path Finder in Getting Data In 04-15-2020 0 5	0	5
	How to monitor user activity (logon and logoff) Hello, Excuse my lack of expertise with Splunk. Could you please let me know how i can track when a specific user lo... by gntavelis New Member in Getting Data In 04-15-2020 0 9	0	9
	how to configure inputs.conf? i have logs like this : -rw-r----- 1 jira jira 4921534 Apr 13 22:42 catalina.2020-04-13.log -rw-r----- 1 jira jir... by khandelwaly Explorer in Getting Data In 04-15-2020 0 17	0	17
	Heavy Forwarder Installation version compatibility Currently we are running with Splunk Cloud 7.2.9.1 version the same applicable for indexers ,cluster master and searc... by anandhalagaras1 Contributor in Getting Data In 04-15-2020 0 1	0	1
	How to split data based on a field I have the following query: ns=name* TEST_DECISION PRODUCT IN (PRODUCT1) \| timechart span=1d limit=0 count by TEST_... by angersleek Path Finder in Getting Data In 04-15-2020 0 7	0	7
	Splunk Lastname firstname formating I am using this query to fetch current logged in user "\|rest splunk_server=local /services/authentication/current-con... by arunsundarm Engager in Getting Data In 04-15-2020 0 3	0	3
	extract first value from json subarray Hello Guys , I have one json event in which there is subarray so i want to create one field which will have first in... by kannu Communicator in Getting Data In 04-15-2020 0 5	0	5
	no data being ingested hi so im having a problem I ingested data(and i receive the successful page) but whenever i search for data the inde... by zubairaizatron Explorer in Getting Data In 04-15-2020 0 1	0	1
	Filter the data of a logfile at Universal Forwarder? Hi Splunker, I am using splunkforwarder 6.5 on windows 2k8 servers. I am monitoring a log file, from splunk. I have ... by sarvesh_11 Communicator in Getting Data In 04-15-2020 0 3	0	3
	Connecting JMS Modular Input to Remote IBM MQ Exception Trying to access IBM MQ topic or queue using JMS modular input, defined input.conf as [jms://topic/:MyTopic1] init_m... by husain85 New Member in Getting Data In 04-14-2020 0 0	0	0
	Setup.xml handle save (POST) to a scripted input error So here are the details. I have an app called myapp. under myapp/default I have a setup.xml defined like this ... by manishmenon86 New Member in Getting Data In 04-14-2020 0 2	0	2
	Transform to exclude lines in a log and keep the rest Hi, I need to import a log file in to Splunk however I want to exclude a certain type of entry. The entry to be ignor... by dfratson New Member in Getting Data In 04-14-2020 0 4	0	4
	Unable to see vmware esxi syslog in splunk we are forwarding vmware esxi syslog to splunk by using heavy forwarder. we have not installed any universal forward... by meenakande New Member in Getting Data In 04-14-2020 0 4	0	4
	need help in time conversion Currently am having a code that converts the time value to a formatted way. \| rename _time as Time_CST \| fieldfor... by jerinvarghese Communicator in Getting Data In 04-14-2020 0 7	0	7
	CSV Input, duplicates values I am monitoring my PKI certificates with a PowerShell script which returns the number of valide days for each certifi... by miguel1423 Explorer in Getting Data In 04-14-2020 0 4	0	4
	steps to move universal forwarder from oracle database server to other without loosing any app config/setting I am new to splunk, can i get advice on moving splunk universal forwarder from one db host to another. I am looking f... by mahenreddy New Member in Getting Data In 04-14-2020 0 5	0	5
	Wrong indexed fields. Hi, I want to index this csv file: run_time;field1;field2;field3;field4;field5;field6;field7;field8; 80s;"iField_va... by spisiakmi Contributor in Getting Data In 04-14-2020 0 2	0	2
	Regex parse message to multiple lines help I have a below message: [32minfo[39m: [Clean Storage] brand/market/testing1.html, brand/market/testing2.html, brand/... by kevincai79 Engager in Getting Data In 04-14-2020 0 3	0	3
	Splunk_TA_esxilogs - Why Verbose and Trivia Log are set to NullQueues in transforms.conf Hi Splunk Support Team, We have utilized the vmware app add-on Splunkbase Splunk_TA_esxilogs and just want to unde... by mel_arce Engager in Getting Data In 04-13-2020 0 1	0	1
	LINE_BREAKER keep the line breaking regex string Hi team, I have logs like this: This is Tom This is Amy This is David This is Ben I want the line breaking to be ... by season88481 Contributor in Getting Data In 04-13-2020 0 2	0	2
	Need your help once again - Index file, json with EPOCH time "grid_w":1693,"solar_pct":0,"epoch":1586824635}} I need to ingest a JSON file with epoch time stamps.. its timest... by pir8radio Path Finder in Getting Data In 04-13-2020 0 1	0	1
	splunk universal forwarder not monitoring all files in a folder Same version of splunk forwarder (8.0.2) on 2 linux servers are behaving differently. One lists all files under a fo... by sid1987 New Member in Getting Data In 04-13-2020 0 4	0	4