Getting Data In

Community Activity

Forward Logs to Third Party Syslog Server - Not able to receive log data as _raw data in Third Party Syslog Server I am collecting windows machines logs though Universal Forwarder to Splunk Heavy Forwarder. UF STANZA - outputs.conf... by lubinak Engager in Getting Data In 07-04-2019 0 6	0	6
How to display data as a timeline in a table with correct timezone? I want to display my data as a timeline in a table. However, I noticed that the information that I'm analyzing has a ... by xploresplunk New Member in Getting Data In 07-03-2019 0 3	0	3
Input source path case sensitive? Is the path specified in a monitor stanza in inputs.conf case sensitive? For example, [monitor://C:\Windows\System32... by eugenekogan Explorer in Getting Data In 07-03-2019 4 3	4	3
What is the best app or sourcetype to use for Malwarebytes data? Hi Folks, I am working on boarding logs from MalwareBytes. The log is being written to a Kiwi Syslog server. Can an... by abeeber_splunk Splunk Employee in Getting Data In 07-03-2019 0 7	0	7
How do I dedupe splunk results? Sometimes in splunk I get a lot of duplicate results, is there a dedupe command I can use to narrow the results? by jtlewis Engager in Getting Data In 07-03-2019 2 7	2	7
Given server addres 123.0.0.456 and path /etc/tomcat/logs/catalina.out how do I find this log in Splunk? I know how to ssh into the server and view this log. I want to know how I can easily view this log in Splunk without ... by philrego Path Finder in Getting Data In 07-03-2019 0 5	0	5
What is the Splunk forwarder installation procedure for AIX Hello Splunkers, I need to install Splunk forwarder on my AIX machine. Can someone please share step by step procedu... by ramprakash Explorer in Getting Data In 07-03-2019 0 3	0	3
Splunk Vs Microsoft Azure sentinel In Splunk when i ingest Security events log of AD from 70 domain controllers for just 4 whitelisted events and droppi... by hrithiktej Communicator in Getting Data In 07-03-2019 1 0	1	0
Unable to view Nexus data in main dashboard of Cisco Networks App Hi there, I've just recently installed the 'Cisco Networks' app https://splunkbase.splunk.com/app/1352/ However in... by shamscw Engager in Getting Data In 07-03-2019 0 3	0	3
Loops on csv file hi, i comeback to ask u again about my problem ; so : \| inputlookup Obso_Inventory.csv \| eval Compo=case(Composant="W... by kacel New Member in Getting Data In 07-03-2019 0 5	0	5
splunk output Hi I sent a file to splunk but i want to get that file from splunk. how many ways we have can we do it as syslog forw... by manasapp New Member in Getting Data In 07-03-2019 0 4	0	4
Splunk 7.2.4 and Tableau connection Hi, It was working fine until last week but from this Monday i am having trouble connecting Tableau to splunk data s... by garimavohra Explorer in Getting Data In 07-03-2019 1 4	1	4
Devices or sourcetypes not sednig logs Its a bit complicated query but let me explain. One device=a start sending logs after 3 months. befor 3 months there ... by riqbal47010 Path Finder in Getting Data In 07-03-2019 0 1	0	1
Splunk to split a multivalue json Hi Splunk community I have been trying for 2 days using spath, mvindex, split on the following json... this is a row... by sssignals Path Finder in Getting Data In 07-03-2019 0 2	0	2
Windows: Sending Splunk logs to third party server I need to send Windows Event logs to the third party syslog solutions. Logs from Windows Universal Forwarder is sent ... by spectrum2035 Explorer in Getting Data In 07-03-2019 0 10	0	10
Feature of Splunk: Auto detect user client (PC/Notebook) time zone? Hi all, Any Splunk features able auto detect current login user client time zone, maybe detect on operating system l... by henrysoon80 New Member in Getting Data In 07-03-2019 0 6	0	6
How can we find out which HTTP Event Collector tokens are not being used? We have numerous input stanzas like - [http://<name>] disabled = 0 token = xxxxxxxx-xxxx-xxxxx-xxxx-xxxxxxxxxxxxx in... by ddrillic Ultra Champion in Getting Data In 07-02-2019 0 3	0	3
Event Time Stamp: Day and Month Switched by Splunk Hi, I have 1 months worth of logs I am uploading to Splunk cloud manually as a trial for when our Enterprise license ... by intelli2019 New Member in Getting Data In 07-02-2019 0 6	0	6
Event filtering on Heavy-Forwarder Hi guys I have a multi tier Splunk implementation as following : Syslog ----> Heavy-Forwarder ----> Indexer Univer... by muhammadalavi19 Loves-to-Learn in Getting Data In 07-02-2019 0 4	0	4
How to re-index data in to splunk with different source type? I am using universal forwarder I indexed data into Splunk with a source type now I want to re-index same data with di... by vikram1583 Explorer in Getting Data In 07-02-2019 0 2	0	2
Forwarder not starting I have forwarder down since past two months, when i brought it up it generated errors. No Splunkd logs have been cr... by ramprakash Explorer in Getting Data In 07-02-2019 0 5	0	5
How to send a dictionary or a json as an extraData with Splunk mint iOS SDK I have an iOS project where I send analytics logs. I have a dictionary ( [String: Any] ) that I am able to send to S... by splunkmint5 New Member in Getting Data In 07-02-2019 0 0	0	0
Correct Daemon configuration for the splunk logging driver for docker? No events are being ingested I'm trying to configure the splunk logging driver in docker to ingest the docker logs into splunk to be able to monit... by tripper New Member in Getting Data In 07-02-2019 0 0	0	0
Venafi logs have stopped ingesting into Splunk Venafi logs stopped ingesting into Splunk. We have appropriate role created and capabilities(edit_tcp) also attached... by splunker545 Engager in Getting Data In 07-02-2019 0 2	0	2
Monitoring Host/client connectivity Hello, I'd imagine someone's already had this issue and solved it but I can't find it in Answers and hope someone can... by PDXKiel Path Finder in Getting Data In 07-02-2019 0 5	0	5