Getting Data In

Community Activity

error after stopping and connecting to instance in aws Hi Everyone, I spinned up a new windows instance in aws, then i installed splunk application in that server. Then i ... by kancharlarajesh New Member in Getting Data In 01-30-2020 0 1	0	1
Universal Forwarder 8.0 upgrade path from 6.x We have a bunch of older 6.x universal forwarders that will be incompatible with an 8.0 Enterprise Splunk instance. ... by smiejascott New Member in Getting Data In 01-30-2020 0 4	0	4
How to filter our dashboard by each host or including all hosts? Hi, I'm trying to filter our dashboard by each host or including all hosts. We have many field(chart) in a dashboar... by summerura Explorer in Getting Data In 01-30-2020 0 5	0	5
How do you filter data from a log and send them to 2 splunk instances while discarding the rest? I'm trying to filter data from a log and send them to 2 splunk instances while discarding the rest. I've tried a lit... by melvinfuglem Explorer in Getting Data In 01-30-2020 0 4	0	4
TCP requirement for syslog transfer Syslogs are sent on UDP port 514 towards Syslog-ng But we have experienced if tcp for port 514 is not working/not op... by jibin1988 Path Finder in Getting Data In 01-30-2020 0 11	0	11
HTTP Event Collector returns Bad Request - what is wrong with my event? While posting a request to Splunk via HEC, I get the response as {"text":"No data","code":5} and when I enable versio... by jagadeeshm Contributor in Getting Data In 01-29-2020 1 11	1	11
Monitor logs on Indexers and forward to another indexer cluster In my environment, we send everything to our indexer cluster and use data cloning using _TCP_ROUTING on the universal... by mccartneyc Path Finder in Getting Data In 01-29-2020 0 1	0	1
Original Timestamp Value/Format Hello, I'm looking for a way to capture the original timestamp value/format from various logs. Here are some of the f... by genesiusj Builder in Getting Data In 01-29-2020 0 0	0	0
splunk-kubernetes-logging in Kubernetes cluster getting error_class=Net::OpenTimeout error="execution expired" I am trying to setup splunk-kubernetes-logging. I have my daemonset running on my worker nodes, but fluentd is failin... by solguin New Member in Getting Data In 01-29-2020 0 1	0	1
default.meta [views\setup] Hello guys,Does anyone know what views\setup found in default.meta means? Also if Search & Reporting app default.meta... by splunkreal Motivator in Getting Data In 01-29-2020 0 4	0	4
splunk forwarder upgrade Hi All i have a requirement to upgrade splunk forwarder from 7.1 to 7.3.3, I will use sccm to upgrade to 7.3.3, exper... by risingflight143 Explorer in Getting Data In 01-29-2020 0 2	0	2
Splunk HF send only auditd, syslog, linux_secure to 3rd party syslog I am having trouble wrapping my head around how to configure a HF to forward the sourcetypes of syslog and auditd to ... by ZimmermanC1 Explorer in Getting Data In 01-29-2020 0 5	0	5
Why am I getting "ERROR UiPythonFallback - Appserver at http://127.0.0.1:8065 never started up!" on my Splunk 6.2.1 indexers? I am new to Splunk, and noticed the web interface for my Indexers is offline. After reviewing the logs I found the b... by richardwii Engager in Getting Data In 01-29-2020 2 3	2	3
How to split String sentence into one row? Hello, I have a fields in my index named MESSAGE. [BBB] ProcessGenererIdentifiantLMKRImpl/genererIdentifiantLMKR -... by tahasefiani Explorer in Getting Data In 01-29-2020 0 3	0	3
WinEventlog Input for [WinEventLog://Microsoft-Windows-Shell-Core/AppDefaults] Hi, I try to monitor Microsoft-Windows-Shell-Core/AppDefaults directory. I tried adding it to Splunk_TA_windows by... by dkeck Influencer in Getting Data In 01-29-2020 0 3	0	3
Can I add additional monitor stanzas on an indexers inputs.conf? In my indexers inputs.conf we have the standard stanza in place for receiving inbound logs from forwarders. [splunkt... by lhanich1 Path Finder in Getting Data In 01-28-2020 0 2	0	2
logs being cutoff Running Splunk Enterprise and Splunkforwarder, both on RHEL, and we are having issues with the front portion of some ... by ralphw_SAIC Path Finder in Getting Data In 01-28-2020 0 7	0	7
Forwarder load balancing over SSL to indexer cluster ? Currently trying to load balance data from forwarder to indexer cluster ( idx1 & idx2) over ssl . So this configurat... by aniketpatil Engager in Getting Data In 01-28-2020 0 2	0	2
Json file is getting truncated while uploading Hi all, when i upload a json file to splunk, the data is getting truncated and the full data is not being uploaded. B... by anooshac Communicator in Getting Data In 01-28-2020 0 6	0	6
how to get props.conf to separate unstructured data i want to have 3 fileds in the below unstructured data. i need props.conf for the below data. 1st is always heading.... by DataOrg Builder in Getting Data In 01-28-2020 0 1	0	1
Help indexs /etc/resolv as sourcetype config_file? All, I need to monitor the /etc/resolv as sourcetype config_file in my env. This is well below the 256 byte min for... by daniel333 Builder in Getting Data In 01-28-2020 0 1	0	1
windows application log files. I'm trying to configure splunk to ingest two application logfiles, not the event logs the actual application logfile ... by alanhowlett New Member in Getting Data In 01-28-2020 0 7	0	7
Forwarder SSL and NO-SSL Forwarding Hi all, I've an enviroment like this: 1 Search Head Cluester ( 3 servers ) ; 1 Indexers Cluster ( 4 server ); 1 Dep... by fabrizioalleva Path Finder in Getting Data In 01-28-2020 0 6	0	6
Help configuring a domain controller on a universal forwarder to send data to indexer Hello Guys, I am very new to Splunk and am trying to configure UF to send data to an indexer on port 9997. I have ena... by rahulkumarfgf Explorer in Getting Data In 01-28-2020 0 21	0	21
Any suitable option for collecting data from HP, Dell switches using Universal Forwarder Hello Everyone! So, I have my Splunk Enterprise and universal forwarder installed on the same machine running Window... by rahulkumarfgf Explorer in Getting Data In 01-28-2020 0 1	0	1