Getting Data In

Community Activity

Export files to SFTP Server Hello,I have a montly report that is huge (300 MB approx) and would like it to be exported to an external SFTP Server... by mubeen New Member in Getting Data In 08-06-2024 0 1	0	1
get error when retrieve log from cortex xdr below is error, how to fix this?2024-08-05 21:46:52,757 ERROR pid=2311415 tid=MainThread file=base_modinput.py:log_e... by Priyavit New Member in Getting Data In 08-06-2024 0 0	0	0
Splunk Infrastructure Monitoring add-on for Synthetics Hi all.We have several synthetics in a splunk Obervability cloud and I want to add their metrics in the Splunk enterp... by Be_JAR Path Finder in Getting Data In 08-05-2024 0 0	0	0
using Log Insight or VMware and NSX Addon to collect logs from ESXi hosts, vCenter servers, and NSX components? Hi everyone,I'm currently using VMware vRealize Log Insight to collect logs from ESXi hosts, vCenter servers, and NSX... by maede_yavari Explorer in Getting Data In 08-04-2024 0 0	0	0
I am getting this error all the dashboard saying the data model is not found by k150 New Member in Getting Data In 08-02-2024 0 1	0	1
Splunk event time and the raw event time difference Hello Splunkers!!Please help me to fix this time zone issue.Thanks in advance!! by uagraw01 Motivator in Getting Data In 08-02-2024 0 14	0	14
Windows Perfmon data not collecting Splunk is faliing to collect perfmon data from our Windows 2022 servers. I've extracted and deployed the stanzas from... by mooree Path Finder in Getting Data In 08-02-2024 0 11	0	11
Heavy forwarder connections to Splunk indexers by checking internal logs for any type of issues. i have to create an alert to monitor any issue happens for HF to Indexers, by checking internal logs. I am using this... by phanikumarcs Explorer in Getting Data In 08-02-2024 0 3	0	3
rename field name in lookup table with outputlookup command Hi,I want to rename the fields while writing to a lookup table using outputlookup command. Is there a way to do it?I ... by newsplunker2024 Explorer in Getting Data In 08-01-2024 0 3	0	3
Splunk Inputs Help Good morning, So I am trying to monitor all files within this directory /var/log/syslog/<IP> Directory structure: ... by JoshuaJJ Path Finder in Getting Data In 08-01-2024 0 5	0	5
Constant Memory growth with Universal Forwarder UDP / tcp inputs and third party forwarding enabled. Constant Memory growth with Universal Forwarder with ever increasing channels.Once third party receiver is restarted,... by hrawat Splunk Employee in Getting Data In 08-01-2024 0 4	0	4
Overriding indexes of sources in SC4S Hi,Apologies if I'm using the wrong terminology here.I'm trying to configure SC4S to override the destination indexes... by MediumToast Engager in Getting Data In 07-31-2024 0 2	0	2
Splunk Addon for Unix cannot decode auditd logs Good day,I have installed Splunk ES v9.2.1 on a Linux server (CentOS 7.9). On Splunk ES server, I have installed Splu... by NatSec Explorer in Getting Data In 07-31-2024 0 1	0	1
How do I deal with inconsistent time formats from Microsoft Azure? When ingesting Microsoft Azure data, we see different time formats for different Azure categories, and I wonder how t... by danielbb Motivator in Getting Data In 07-31-2024 0 1	0	1
Input Google Workspace logs of specific users? The GWS is running for the whole company.Is it possible to only input a part of users' logs into Splunk, using add-on... by yanjingz Splunk Employee in Getting Data In 07-31-2024 0 1	0	1
How to send syslog using rsyslog over TCP encrypted with TLS? Hello All, Currently a certain application is sending the data to splunk via syslog method(rsyslog) using TCP, so no... by im_bharath Path Finder in Getting Data In 07-31-2024 0 3	0	3
Only 1 forwarder showing logs in Month, Day, Year format. I want default of Day, Month, Year. I'm running Splunk Enterprise 9.1.1. It is a relatively fresh installation (done this year). Splunk forwarders are ... by sarlacc Explorer in Getting Data In 07-30-2024 0 6	0	6
Need assistance in setting a sourcetype--date/time I am trying to create a sourcetype for a new client:Note StartDate=xxxx is where the log begins. However the StartTi... by NanSplk01 Communicator in Getting Data In 07-30-2024 0 5	0	5
value appearing twice for JSON, none of the old answers work using UF to send json file and below are the props.conf.[test_json]pulldown_type = trueLINE_BREAKER = ([\r\n]+)INDEXE... by yohhpark Path Finder in Getting Data In 07-30-2024 0 21	0	21
How I can enable monitoring of USBSTOR in Splunk Web? I am wanting to go into the Splunk Web and monitor the USBSTOR in Windows 10. I am selecting the "New Registry Monit... by m130carbine Loves-to-Learn Lots in Getting Data In 07-30-2024 0 1	0	1
Kerio Control Hello everyone, I want the Kerio Control technical guide that provides details on how to set up and configure a Syslo... by tuts Path Finder in Getting Data In 07-30-2024 1 2	1	2
Json Data not parsing properly . i have json data but all the data getting in single event not parsing properly each event here is adding the event da... by chandrasekhar46 Loves-to-Learn Everything in Getting Data In 07-30-2024 0 6	0	6
Syntactical Error in WQL Hello,I am currently using Splunk UF 7.2 on a Windows Server, and my UF is configured on D Drive.I am getting below e... by sarvesh_11 Communicator in Getting Data In 07-29-2024 0 3	0	3
re-route logs from one index to another HelloI have one big index with lots of files which I want to reroute logs from there to different indexesThe reroute ... by sarit_s6 Engager in Getting Data In 07-29-2024 0 12	0	12
splunk forwarder - blue cape security tutorial Hello Splunk communityin a nutshell my problem is i have set up splunk and a forwarder on a server, added input and o... by benmstl New Member in Getting Data In 07-27-2024 0 2	0	2