Getting Data In

Community Activity

Splunk not ingesting all logs with xml ... Only ingesting 1 out of every 3 Hi, I am dealing with an issue where I am ingesting some logs that contains a few regular line then followed by xml d... by Strangertinz Path Finder in Getting Data In 11-02-2024 0 3	0	3
Moving indexers from centos to redhat8 Hi Folks, currently we have 4 physical indexers running on CentOS but since CentOS is EOL , plan it to migrate OS fro... by sbhatnagar88 Path Finder in Getting Data In 11-02-2024 0 15	0	15
How to send OpenCTI data to Splunk Hi there, i got issue when setting connector Splunk in OpenCTIWhen i check logs, it says terminatedi follow guide fro... by zksvc Contributor in Getting Data In 10-31-2024 0 4	0	4
How to filter specific logs and send it as syslog to a third-party host Hi all,I want to send logs (which are part from our sourcetype [kube_audit]) from my HeavyForwarder to a third-party ... by LittleFatFish Engager in Getting Data In 10-31-2024 0 3	0	3
Splunk HTTP Event Collector support for custom metadata(tags) fields/routing fields. Splunk version 9.0.8/9.1.3/9.2.x and above has added capability to process key value pairs that will be added at inde... by hrawat Splunk Employee in Getting Data In 10-30-2024 2 6	2	6
UF in AIX stops after some time. Hi, a few days ago, I installed the UF in an AIX server but it had some details, such as the service running, but the... by Aresndiz Explorer in Getting Data In 10-30-2024 0 1	0	1
Logs truncated in Splunk despite line being under the 10000 bytes threshold Hi community,I have observed an issue with the ingestion of the first line in a log file that, at first glance, seeme... by victorcorrea Path Finder in Getting Data In 10-30-2024 0 3	0	3
Why are Splunk some logs missing from kiwi syslog? Hello everyone I am running into an issue that may be either Splunk or my Kiwi Syslog server, and I am not really sur... by bheptinstall Engager in Getting Data In 10-30-2024 0 2	0	2
How to get a list of all hosts installed with Universal Forwarder I have a bunch of agents(hosts) in Appdynamics, I wanted to figure out that the Universal Forwarder is installed or n... by Vetrikmr New Member in Getting Data In 10-30-2024 0 4	0	4
How could I specifit someday for splunk oneshot to Splunk Indexer? Hi guys,I have a set of data in the following format:This is a manually exported list, and my requirements are as fol... by splunksuperman Explorer in Getting Data In 10-29-2024 0 4	0	4
Splunk - How to convert Logs to Metrics (SQL Add on)? Hi, I am trying to get SQL Performance monitoring logs into our environment for one of our ITSI use cases The event ... by ssj3abid Engager in Getting Data In 10-29-2024 1 1	1	1
Does Splunk Windows installer generates any logs during the install process? Splunk Windows installer, the msi package, is used to install new Splunk instances or upgrade/update existing Splunk ... by Ledio_Ago Splunk Employee in Getting Data In 10-29-2024 2 4	2	4
Is there any timezone conversion function in splunk to convert timezone in search string? Is there any timezone conversion function in splunk to convert timezone in search string? by AditiKulkarni New Member in Getting Data In 10-29-2024 0 19	0	19
504 Gateway Time-out We are hosting Splunk enterprise on AWS EC2 instances, the flow goes as follows:ALB>Apache Reverse proxies>ALB>SHC<>I... by Mohanad Observer in Getting Data In 10-29-2024 0 1	0	1
Issue with accepting splunk_hec as exporter for OpenTelemetry Collector Hello.I'm trying to transfer metric collected from Prometheus to my cloud instance. According to https://docs.splunk.... by slipinski Path Finder in Getting Data In 10-29-2024 0 2	0	2
AggregatorMiningProcessor - Breaking event because limit of 256 has been exceeded Splunk has warning log:WARN AggregatorMiningProcessor [10530 merging] - Breaking event because limit of 256 has been ... by WonjinKim Engager in Getting Data In 10-28-2024 0 8	0	8
dealing with UF user change (linux) I haven't upgraded UF in a while, and I'm having some trouble figuring out how I should proceed with bringing it up t... by ilhwan Path Finder in Getting Data In 10-28-2024 0 2	0	2
Filter Logs I have XML input logs in Splunk.I have already extracted the required fields, totaling 10 fields.I need to ensure any... by SalahKhattab Explorer in Getting Data In 10-27-2024 0 8	0	8
How to connect Apigee Edge to Splunk Need help configuring a secure connection between Google Apigee Edge and Splunk. What parameters need to be set on t... by wswartz_splunk Splunk Employee in Getting Data In 10-27-2024 0 2	0	2
Syslog forwarding I have an appliance that can only forward syslog via UDP. Is there a way for me to forward the udp syslog to a machin... by new2splunk3 New Member in Getting Data In 10-26-2024 0 2	0	2
How to find which Data Source an event is originating from Hello,I'm having a hard time trying to find what data source events from a search are originating from, the Search is... by mninansplunk Path Finder in Getting Data In 10-24-2024 0 1	0	1
Why UTC events suddenly started displaying as PST instead of Eastern Time? Hi,We have data from Change Auditor coming via HEC setup on a Heavy Forwarder. This HF instance was upgraded to Versi... by att35 Builder in Getting Data In 10-24-2024 0 11	0	11
Dual Forwarding \| INGEST_EVAL for new index names. I'm working on an environment with a mature clustered Splunk instance. The client wishes to start dual-forwarding to ... by NullZero Communicator in Getting Data In 10-24-2024 0 4	0	4
Reassigning / replacing a sourcetype based on source I am looking to replace a sourcetype using props.conf / transforms.conf so far with no luck. props.conf [original_so... by beataficek Explorer in Getting Data In 10-24-2024 0 2	0	2
jsonlinebreaker processing a valid json file I am forwarding some json files from a splunk forwarder on linux, example file below:{<!-- -->"dateTime" : "04/11/2021 08:22:... by kulrajatwal Explorer in Getting Data In 10-23-2024 0 2	0	2