Getting Data In

Community Activity

How to write dynamic rest api script in Shell?? Hi All, I was writing one script in shell for getting data though rest api . Below is the connect of the script `... by pal_sumit1 Path Finder in Getting Data In 01-31-2020 0 1	0	1
How do I group unstructured events based on errorcode that they contain in body? I have some base splunk query which gives me list of events which has body mentioned below - event 1. {"Errors":{"Er... by dhirajnangar Engager in Getting Data In 01-31-2020 0 2	0	2
Inconsistent indexing time on CSV monitor We have been using daily CSV exports from our "X" monitoring servers that we then display on our performance board ea... by swamysanjanaput Explorer in Getting Data In 01-31-2020 0 5	0	5
Sourcetype renaming not taking Following the documentation for sourcetype renaming, I still fail to get it working. I have added an entry in Source... by srich Explorer in Getting Data In 01-30-2020 0 5	0	5
how to delete duplicate events I messed up my production server - deleted by mistake some of the internal splunk indexes instead of deleting them ... by gooza Communicator in Getting Data In 01-30-2020 4 4	4	4
API json preview field As seen in https://docs.splunk.com/Documentation/Splunk/7.2.3/RESTUM/RESTusing#Example_B:_JSON_response_format_exampl... by grittonc Contributor in Getting Data In 01-30-2020 0 2	0	2
One record, two values per field? We've been acquiring data for some time now via manual imports with CSV files. We're finishing up the process of auto... by aaron_sakovich Path Finder in Getting Data In 01-30-2020 0 11	0	11
error after stopping and connecting to instance in aws Hi Everyone, I spinned up a new windows instance in aws, then i installed splunk application in that server. Then i ... by kancharlarajesh New Member in Getting Data In 01-30-2020 0 1	0	1
Universal Forwarder 8.0 upgrade path from 6.x We have a bunch of older 6.x universal forwarders that will be incompatible with an 8.0 Enterprise Splunk instance. ... by smiejascott New Member in Getting Data In 01-30-2020 0 4	0	4
How to filter our dashboard by each host or including all hosts? Hi, I'm trying to filter our dashboard by each host or including all hosts. We have many field(chart) in a dashboar... by summerura Explorer in Getting Data In 01-30-2020 0 5	0	5
How do you filter data from a log and send them to 2 splunk instances while discarding the rest? I'm trying to filter data from a log and send them to 2 splunk instances while discarding the rest. I've tried a lit... by melvinfuglem Explorer in Getting Data In 01-30-2020 0 4	0	4
TCP requirement for syslog transfer Syslogs are sent on UDP port 514 towards Syslog-ng But we have experienced if tcp for port 514 is not working/not op... by jibin1988 Path Finder in Getting Data In 01-30-2020 0 11	0	11
HTTP Event Collector returns Bad Request - what is wrong with my event? While posting a request to Splunk via HEC, I get the response as {"text":"No data","code":5} and when I enable versio... by jagadeeshm Contributor in Getting Data In 01-29-2020 1 11	1	11
Monitor logs on Indexers and forward to another indexer cluster In my environment, we send everything to our indexer cluster and use data cloning using _TCP_ROUTING on the universal... by mccartneyc Path Finder in Getting Data In 01-29-2020 0 1	0	1
Original Timestamp Value/Format Hello, I'm looking for a way to capture the original timestamp value/format from various logs. Here are some of the f... by genesiusj Builder in Getting Data In 01-29-2020 0 0	0	0
splunk-kubernetes-logging in Kubernetes cluster getting error_class=Net::OpenTimeout error="execution expired" I am trying to setup splunk-kubernetes-logging. I have my daemonset running on my worker nodes, but fluentd is failin... by solguin New Member in Getting Data In 01-29-2020 0 1	0	1
default.meta [views\setup] Hello guys,Does anyone know what views\setup found in default.meta means? Also if Search & Reporting app default.meta... by splunkreal Motivator in Getting Data In 01-29-2020 0 4	0	4
splunk forwarder upgrade Hi All i have a requirement to upgrade splunk forwarder from 7.1 to 7.3.3, I will use sccm to upgrade to 7.3.3, exper... by risingflight143 Explorer in Getting Data In 01-29-2020 0 2	0	2
Splunk HF send only auditd, syslog, linux_secure to 3rd party syslog I am having trouble wrapping my head around how to configure a HF to forward the sourcetypes of syslog and auditd to ... by ZimmermanC1 Explorer in Getting Data In 01-29-2020 0 5	0	5
Why am I getting "ERROR UiPythonFallback - Appserver at http://127.0.0.1:8065 never started up!" on my Splunk 6.2.1 indexers? I am new to Splunk, and noticed the web interface for my Indexers is offline. After reviewing the logs I found the b... by richardwii Engager in Getting Data In 01-29-2020 2 3	2	3
How to split String sentence into one row? Hello, I have a fields in my index named MESSAGE. [BBB] ProcessGenererIdentifiantLMKRImpl/genererIdentifiantLMKR -... by tahasefiani Explorer in Getting Data In 01-29-2020 0 3	0	3
WinEventlog Input for [WinEventLog://Microsoft-Windows-Shell-Core/AppDefaults] Hi, I try to monitor Microsoft-Windows-Shell-Core/AppDefaults directory. I tried adding it to Splunk_TA_windows by... by dkeck Influencer in Getting Data In 01-29-2020 0 3	0	3
Can I add additional monitor stanzas on an indexers inputs.conf? In my indexers inputs.conf we have the standard stanza in place for receiving inbound logs from forwarders. [splunkt... by lhanich1 Path Finder in Getting Data In 01-28-2020 0 2	0	2
logs being cutoff Running Splunk Enterprise and Splunkforwarder, both on RHEL, and we are having issues with the front portion of some ... by ralphw_SAIC Path Finder in Getting Data In 01-28-2020 0 7	0	7
Forwarder load balancing over SSL to indexer cluster ? Currently trying to load balance data from forwarder to indexer cluster ( idx1 & idx2) over ssl . So this configurat... by aniketpatil Engager in Getting Data In 01-28-2020 0 2	0	2