Getting Data In

Community Activity

HTTP Event Collector and curl: How to pass the hostname variable in Chef? (BOUNTY!) Hi, (Not Splunk questions per say...) I'm setting up the HTTP Event Collector, so that our chef recipes can log to ... by a212830 Champion in Getting Data In 02-13-2020 0 11	0	11
Heavy Forwarder Slow to Start Forwarding Syslog Hello- My current setup: Device Syslog --> Syslog Server w/ Splunk HvyFwd --> Splunk Indexer When I restart my Heav... by DBattisto Communicator in Getting Data In 02-13-2020 0 4	0	4
How to input data via "TA for Nutanix Prism" add-on? As I read the guide from "TA for Nutanix Prism" on Splunk Base. There's some description of data input as below: "O... by lllidan New Member in Getting Data In 02-12-2020 0 0	0	0
Why is SSL on Universal Forwarder failing with error "WARN SSLCommon - Received fatal SSL3 alert"? Hi, I just followed the answer in the below post to configure SSL between my UF and the indexer: answers.splunk.com... by samhodgson Path Finder in Getting Data In 02-12-2020 1 6	1	6
WinEvent whitelist not working I'm trying to do whitelist on windows eventcode on my test environment before applying on production. after apply and... by SoknySplunk Loves-to-Learn Lots in Getting Data In 02-12-2020 0 4	0	4
DB Connect not able to process results I am able to test the connection in datalab using splunk db connect app. I am able to fetch results when I run the qu... by p0p00aj New Member in Getting Data In 02-12-2020 0 1	0	1
How to do XSD schema validation on JSON data Hello, I have complex JSON being written to Splunk and want to do XSD schema validation on the JSON, this is to ensur... by msrama5 Explorer in Getting Data In 02-12-2020 0 0	0	0
Install splunk forwarder in Linux servers Hi All; Is there way to push and install splunk forwarder to multiple Linux servers at same time? If you have scrip... by aalhabbash1 Path Finder in Getting Data In 02-12-2020 0 3	0	3
heavy forwarder multi core? Hi, I see a few similar questions in the past however I can't see an answer to date. Does anyone know if the splun... by danan5 Path Finder in Getting Data In 02-12-2020 0 2	0	2
Splunk inputs and whitelists --- how to? I've combed through inputs.conf and the various questions on answers but can't seem to get a definitive example in ho... by DEAD_BEEF Builder in Getting Data In 02-12-2020 0 2	0	2
Extracting ISO8601 timestamp Hello, I’m working on a powershell inputs and am stuck in regards to extracting the timestamp. An event is stdout f... by mbrownoutside Path Finder in Getting Data In 02-12-2020 0 8	0	8
Retention policy for 30 days (15 searchable + 15 frozen) Hello all, I'm trying to setup the following retention policy: 15 days of events to be searchable (hot/warm/cold - ... by dstoev Path Finder in Getting Data In 02-12-2020 0 8	0	8
Highlight specific string in JSON formatted events Hello, I have a dashboard where I am displaying events which are JSON formatted (a requirement not to have them in r... by gustavlundberg New Member in Getting Data In 02-12-2020 0 2	0	2
RBAC without using indexes Is it possible to do RBAC without indexes ? I have 5 indexes at least, but I can’t use indexes to do RBAC because all... by nouh_hussein New Member in Getting Data In 02-11-2020 0 3	0	3
Is there JSON model validation in Splunk? Hello, I have complex json being written to splunk and want to do model file validation , what is the best way to do ... by msrama5 Explorer in Getting Data In 02-11-2020 0 4	0	4
not able to browse Splunk Cloud HEC end point I am not able to access my HEC URL, can you please help me? I am using Free Splunk cloud and setup an HEC and enabled... by vemulasplunk Explorer in Getting Data In 02-11-2020 1 1	1	1
Crashplan Service Log Date timestamp incorrect I've looked through a lot of the posts about date timestamp extraction and I think I'm decent enough at it but for th... by bmorgenthaler Path Finder in Getting Data In 02-11-2020 0 3	0	3
How to configure Splunk to parse and index JSON data I got a custom-crafted JSON file that holds a mix of data types within. I'm a newbie with Splunk administration so be... by berryk New Member in Getting Data In 02-11-2020 0 8	0	8
Default index for all splunkforwarder monitors? I want all forwarders on a single splunkforwarder box to send data to the same specified index. I'd like to avoid ha... by Jordan_Brough Path Finder in Getting Data In 02-11-2020 0 3	0	3
script input not working when parameter is passed as a variable and not the static value in inputs.conf Hi All, I am using a script to fetch http response as splunk raw event. For this I am passing parameter as a variabl... by sara91 Explorer in Getting Data In 02-11-2020 0 3	0	3
Error: Invalid key stanza Hi Team, I am getting below error in spluk local insatance : Error details : Invalid key in stanza [tc... by 02sangeet Engager in Getting Data In 02-11-2020 0 2	0	2
file monitoring in server for size and modified date We have folder directories on the Application server and collecting data through forwarder. i need to calculate file ... by DataOrg Builder in Getting Data In 02-11-2020 0 1	0	1
Http event collector vs monitor directory I have Splunk Universal Forwarder installed on raspberry pi and couple of apps from which I want to send logs to forw... by signumpl Engager in Getting Data In 02-11-2020 0 1	0	1
How to edit my type=host metadata search to exclude a certain index? I have this search: \| metadata type=hosts index=*a OR index=os index!=aruba I want to get all the hosts in all the... by hartfoml Motivator in Getting Data In 02-11-2020 0 10	0	10
Missing events from Splunk Universal Forwarder I have one missing event out of 168 events from our Universal Forwarder. I've already checked the internal logs and t... by iancorrea Path Finder in Getting Data In 02-11-2020 0 5	0	5