Getting Data In

Community Activity

Logs truncated in Splunk despite line being under the 10000 bytes threshold Hi community,I have observed an issue with the ingestion of the first line in a log file that, at first glance, seeme... by victorcorrea Path Finder in Getting Data In 10-30-2024 0 3	0	3
Why are Splunk some logs missing from kiwi syslog? Hello everyone I am running into an issue that may be either Splunk or my Kiwi Syslog server, and I am not really sur... by bheptinstall Engager in Getting Data In 10-30-2024 0 2	0	2
How to get a list of all hosts installed with Universal Forwarder I have a bunch of agents(hosts) in Appdynamics, I wanted to figure out that the Universal Forwarder is installed or n... by Vetrikmr New Member in Getting Data In 10-30-2024 0 4	0	4
How could I specifit someday for splunk oneshot to Splunk Indexer? Hi guys,I have a set of data in the following format:This is a manually exported list, and my requirements are as fol... by splunksuperman Explorer in Getting Data In 10-29-2024 0 4	0	4
Splunk - How to convert Logs to Metrics (SQL Add on)? Hi, I am trying to get SQL Performance monitoring logs into our environment for one of our ITSI use cases The event ... by ssj3abid Engager in Getting Data In 10-29-2024 1 1	1	1
Does Splunk Windows installer generates any logs during the install process? Splunk Windows installer, the msi package, is used to install new Splunk instances or upgrade/update existing Splunk ... by Ledio_Ago Splunk Employee in Getting Data In 10-29-2024 2 4	2	4
Is there any timezone conversion function in splunk to convert timezone in search string? Is there any timezone conversion function in splunk to convert timezone in search string? by AditiKulkarni New Member in Getting Data In 10-29-2024 0 19	0	19
504 Gateway Time-out We are hosting Splunk enterprise on AWS EC2 instances, the flow goes as follows:ALB>Apache Reverse proxies>ALB>SHC<>I... by Mohanad Observer in Getting Data In 10-29-2024 0 1	0	1
Issue with accepting splunk_hec as exporter for OpenTelemetry Collector Hello.I'm trying to transfer metric collected from Prometheus to my cloud instance. According to https://docs.splunk.... by slipinski Path Finder in Getting Data In 10-29-2024 0 2	0	2
AggregatorMiningProcessor - Breaking event because limit of 256 has been exceeded Splunk has warning log:WARN AggregatorMiningProcessor [10530 merging] - Breaking event because limit of 256 has been ... by WonjinKim Engager in Getting Data In 10-28-2024 0 8	0	8
dealing with UF user change (linux) I haven't upgraded UF in a while, and I'm having some trouble figuring out how I should proceed with bringing it up t... by ilhwan Path Finder in Getting Data In 10-28-2024 0 2	0	2
Filter Logs I have XML input logs in Splunk.I have already extracted the required fields, totaling 10 fields.I need to ensure any... by SalahKhattab Explorer in Getting Data In 10-27-2024 0 8	0	8
How to connect Apigee Edge to Splunk Need help configuring a secure connection between Google Apigee Edge and Splunk. What parameters need to be set on t... by wswartz_splunk Splunk Employee in Getting Data In 10-27-2024 0 2	0	2
Syslog forwarding I have an appliance that can only forward syslog via UDP. Is there a way for me to forward the udp syslog to a machin... by new2splunk3 New Member in Getting Data In 10-26-2024 0 2	0	2
How to find which Data Source an event is originating from Hello,I'm having a hard time trying to find what data source events from a search are originating from, the Search is... by mninansplunk Path Finder in Getting Data In 10-24-2024 0 1	0	1
Why UTC events suddenly started displaying as PST instead of Eastern Time? Hi,We have data from Change Auditor coming via HEC setup on a Heavy Forwarder. This HF instance was upgraded to Versi... by att35 Builder in Getting Data In 10-24-2024 0 11	0	11
Dual Forwarding \| INGEST_EVAL for new index names. I'm working on an environment with a mature clustered Splunk instance. The client wishes to start dual-forwarding to ... by NullZero Path Finder in Getting Data In 10-24-2024 0 4	0	4
Reassigning / replacing a sourcetype based on source I am looking to replace a sourcetype using props.conf / transforms.conf so far with no luck. props.conf [original_so... by beataficek Engager in Getting Data In 10-24-2024 0 2	0	2
jsonlinebreaker processing a valid json file I am forwarding some json files from a splunk forwarder on linux, example file below:{<!-- -->"dateTime" : "04/11/2021 08:22:... by kulrajatwal Explorer in Getting Data In 10-23-2024 0 2	0	2
JSON events sent to HEC are losing JSON data when then sent to collect I'm struggling to figure this one out. We have data coming in via an HEC endpoint that is JSON based, with the HEC en... by mburgoon New Member in Getting Data In 10-23-2024 0 4	0	4
Why are universal forwarders reporting "File will not be read, seekptr checksum did not match"? We're getting bunch of these exceptions on our Universal Forwarders...any help would be appreciated and I can provide... by prakash007 Builder in Getting Data In 10-23-2024 1 13	1	13
Handling file in custom commands How can we send a file as input to an API endpoint from custom spl commands developed for both Splunk Enterprise and ... by shub_loginsoft Explorer in Getting Data In 10-23-2024 0 8	0	8
Universal Forwarder on Raspberry Pi Wondering what the chances are of getting a Universal Forwarder compilation for an ARM device such as Raspberry Pi? h... by phoenixdigital Builder in Getting Data In 10-22-2024 4 7	4	7
Routing windows security logs to another index I am trying to route my windows security logs to another specified index but it has to meet certain criteria.EventCod... by lclayton95 Loves-to-Learn Everything in Getting Data In 10-22-2024 0 3	0	3
Can you change the admin user password on forwarder if you dont know the current? I have a forwarder in which we forgot the admin password. Right now it's causing the vmware app to only partially wor... by jbleich Path Finder in Getting Data In 10-22-2024 1 6	1	6