Getting Data In

Community Activity

	Change index depending on host Hi all, I'm trying to split Windows events into different indexes at index time depending on the host which is sendi... by pbalbasdtt Path Finder in Getting Data In 04-16-2020 0 7	0	7
	Looping in csv items to count how many values matches in a index Hi all, starting from a csv which contains 10 items, I want to count ( in order to produce a chart ) all the matches ... by fabrizioalleva Path Finder in Getting Data In 04-16-2020 0 0	0	0
	in the multiselect input how to give user option to choose AND or OR Hi, I have dynamic users in the input type which i am populating in multiselect Now i want to give the user the optio... by surekhasplunk Communicator in Getting Data In 04-15-2020 0 2	0	2
	file monitor input only ingest last 200 bytes of the file Hi guys, I need to on-board some log files, but only the last 200 bytes of each log files contain useful information... by season88481 Contributor in Getting Data In 04-15-2020 0 3	0	3
	How to check how long splunk uf agents are down on particular servers? Hi , We had list of servers a,b,c,d,e,f. How can we check how long splunk uf agents are down on the servers a,b,c,d... by splunker969 Communicator in Getting Data In 04-15-2020 0 16	0	16
	Monitoring Console - Deployment-Wide Averaged System Load Average How would we interpret the "Deployment-Wide Averaged System Load Average" Monitoring console indexing metrics? When ... by gduggan1 Path Finder in Getting Data In 04-15-2020 0 0	0	0
	How to index an XML file with unix time format I have XML files in my PC that I want to index them in Splunk, I need the inputs and the props.conf changed. I did ev... by almotasim90 New Member in Getting Data In 04-15-2020 0 1	0	1
	Unable to filter specific events with props.conf & transforms.conf I've been reading into how to filter incoming events between the Parsing and Indexing stages of our data pipeline and... by marshallsuk Engager in Getting Data In 04-15-2020 0 3	0	3
	Source type for dmesg log file I was wondering if anyone had a good solution for a proper source type for dmesg? Or failing that some way of handli... by scottj1y Path Finder in Getting Data In 04-15-2020 0 5	0	5
	How to monitor user activity (logon and logoff) Hello, Excuse my lack of expertise with Splunk. Could you please let me know how i can track when a specific user lo... by gntavelis New Member in Getting Data In 04-15-2020 0 9	0	9
	how to configure inputs.conf? i have logs like this : -rw-r----- 1 jira jira 4921534 Apr 13 22:42 catalina.2020-04-13.log -rw-r----- 1 jira jir... by khandelwaly Explorer in Getting Data In 04-15-2020 0 17	0	17
	Heavy Forwarder Installation version compatibility Currently we are running with Splunk Cloud 7.2.9.1 version the same applicable for indexers ,cluster master and searc... by anandhalagaras1 Contributor in Getting Data In 04-15-2020 0 1	0	1
	How to split data based on a field I have the following query: ns=name* TEST_DECISION PRODUCT IN (PRODUCT1) \| timechart span=1d limit=0 count by TEST_... by angersleek Path Finder in Getting Data In 04-15-2020 0 7	0	7
	Splunk Lastname firstname formating I am using this query to fetch current logged in user "\|rest splunk_server=local /services/authentication/current-con... by arunsundarm Engager in Getting Data In 04-15-2020 0 3	0	3
	extract first value from json subarray Hello Guys , I have one json event in which there is subarray so i want to create one field which will have first in... by kannu Communicator in Getting Data In 04-15-2020 0 5	0	5
	no data being ingested hi so im having a problem I ingested data(and i receive the successful page) but whenever i search for data the inde... by zubairaizatron Explorer in Getting Data In 04-15-2020 0 1	0	1
	Filter the data of a logfile at Universal Forwarder? Hi Splunker, I am using splunkforwarder 6.5 on windows 2k8 servers. I am monitoring a log file, from splunk. I have ... by sarvesh_11 Communicator in Getting Data In 04-15-2020 0 3	0	3
	Connecting JMS Modular Input to Remote IBM MQ Exception Trying to access IBM MQ topic or queue using JMS modular input, defined input.conf as [jms://topic/:MyTopic1] init_m... by husain85 New Member in Getting Data In 04-14-2020 0 0	0	0
	Setup.xml handle save (POST) to a scripted input error So here are the details. I have an app called myapp. under myapp/default I have a setup.xml defined like this ... by manishmenon86 New Member in Getting Data In 04-14-2020 0 2	0	2
	Transform to exclude lines in a log and keep the rest Hi, I need to import a log file in to Splunk however I want to exclude a certain type of entry. The entry to be ignor... by dfratson New Member in Getting Data In 04-14-2020 0 4	0	4
	Unable to see vmware esxi syslog in splunk we are forwarding vmware esxi syslog to splunk by using heavy forwarder. we have not installed any universal forward... by meenakande New Member in Getting Data In 04-14-2020 0 4	0	4
	need help in time conversion Currently am having a code that converts the time value to a formatted way. \| rename _time as Time_CST \| fieldfor... by jerinvarghese Communicator in Getting Data In 04-14-2020 0 7	0	7
	CSV Input, duplicates values I am monitoring my PKI certificates with a PowerShell script which returns the number of valide days for each certifi... by miguel1423 Explorer in Getting Data In 04-14-2020 0 4	0	4
	steps to move universal forwarder from oracle database server to other without loosing any app config/setting I am new to splunk, can i get advice on moving splunk universal forwarder from one db host to another. I am looking f... by mahenreddy New Member in Getting Data In 04-14-2020 0 5	0	5
	Wrong indexed fields. Hi, I want to index this csv file: run_time;field1;field2;field3;field4;field5;field6;field7;field8; 80s;"iField_va... by spisiakmi Contributor in Getting Data In 04-14-2020 0 2	0	2