Getting Data In

Community Activity

Am I using splunk-ansible playbook for role splunk_standalone correctly? Hi there, I am writing ansible playbooks that configure my local splunk universal forwarders. To setup a mock receiv... by erik_purins Explorer in Getting Data In 02-21-2019 0 1	0	1
How to use Splunk to audit Windows processes created and the users who are running them? Good evening, I have been trying to figure out a way to get a list of all of the software that runs on my servers un... by chuckcoggins Engager in Getting Data In 02-21-2019 0 5	0	5
Do we need props.conf on the indexer when indexing a csv file? We use the following props.conf for csv files - [<sourcetype>] disabled = false SHOULD_LINEMERGE = false INDEXED_EX... by ddrillic Ultra Champion in Getting Data In 02-21-2019 0 10	0	10
Is it possible to filter the IIS logs to they do not forwarded status 200? I configured the Advanced Logging log files on a Server to forwarder to Splunk. This is the structure of the log fi... by crsupportddc Explorer in Getting Data In 02-21-2019 0 2	0	2
Need to stop the events being Split Hi All, I have a scenario where the events should not be split, but after trying a lot of options it still seems to ... by ashrafshareeb Path Finder in Getting Data In 02-21-2019 0 12	0	12
How do you filter out dates from being segmented in segmenters.conf? Hi all, Splunk offers the possibility to customize the way we want data to be segmented in the index files with a ... by julienoud New Member in Getting Data In 02-21-2019 0 8	0	8
Average/Mean time differences by device I have data from several devices in the same index and sourcetype. I'd like to get the average/mean diffs for each sp... by michaelhitzelbe New Member in Getting Data In 02-20-2019 0 5	0	5
What is the correct parameter in props.conf for csv file ? Hi all, i'm pretty new here. I need to assign a name to the fields of a .csv imported file, but it doesn't work. In ... by willmirko New Member in Getting Data In 02-20-2019 0 5	0	5
how we can ingest data from url ? How we can get the data into splunk through URL how to pull data from sharepoint site into Splunk by sainadh_k Engager in Getting Data In 02-20-2019 0 1	0	1
How to monitor a windows service, send an alert and restart the service? How can we to monitor various windows services and send alerts when they are down and optionally attempt to restart t... by mtoddsmith Engager in Getting Data In 02-20-2019 3 4	3	4
Unable to fix Bucket corruption : rawdata was truncated Hiya Bucketheads after running rebuild on a index, quite a lot of buckets were not fixed with below reason. fai... by stanwin Contributor in Getting Data In 02-20-2019 0 0	0	0
Can you use Splunk to ingest Red Hat Satellite logs? Can you use Splunk to ingest Red Hat Satellite logs? There is a Red Hat Storage App and a Splunk app for RedHat Cloud... by aritchie_splunk Splunk Employee in Getting Data In 02-20-2019 0 1	0	1
Universal forwarder issue in AWS Hi , i have created 2 instances of windows in AWS and using one of the instance using universal forwarder to forward... by partix2 New Member in Getting Data In 02-20-2019 0 8	0	8
How can I set up up Snmp and is it possible for this service to translate the OIDs before saving to file? We have a SAP platform sending SNMP traps to a Splunk host. We have configured the net-snmp service to capture those ... by MedralaG Communicator in Getting Data In 02-20-2019 0 4	0	4
Scripted Input Multiline Event wanted Hey, I got a script which is executing a vmstat command on a host. Since yesterday I received the output in a single... by hypePG Path Finder in Getting Data In 02-20-2019 0 1	0	1
Logging lagging behind During the day one specific type of logging seems to lag behind quite a lot. From 10 minutes behind at the start of t... by mmoermans Path Finder in Getting Data In 02-20-2019 0 9	0	9
After log rotation, UF does not forward logs. My environment: Splunk Ver 7.2.3 UF Ver 7.2.3 UF monitors var/log/messages, and forward it to Splunk. But after lo... by yutaka1005 Builder in Getting Data In 02-19-2019 0 6	0	6
PCI Compliance App data source logs sizing We need to propose PCI Compliance app on Splunk for one of our customer. I would like to ask you how to do logs sizin... by yoekleng New Member in Getting Data In 02-19-2019 0 0	0	0
Linebreaker for ESXi Logs I am having problems getting the line breaking to work. The below events are showing as one event with the below set... by rfiscus Path Finder in Getting Data In 02-19-2019 0 2	0	2
unable to get XML to parse correctly Got an XML file that for the life of me I can not get parse correctly. I have tried to use LINE_BREAKER on the 1st li... by cboillot Contributor in Getting Data In 02-19-2019 0 1	0	1
About version difference between UF and SH. I saw it. https://docs.splunk.com/Documentation/Forwarder/7.2.4/Forwarder/Compatibilitybetweenforwardersandindexers ... by oda Communicator in Getting Data In 02-19-2019 0 1	0	1
Optimising CPU + RAM usage on Universal Forwarder Hello guys, I've been looking around in the questions and most of them are about forwarders causing High CPU because... by DavidHourani Super Champion in Getting Data In 02-19-2019 0 6	0	6
Can you help me understand the forwarder to indexers data flow? Hello, I know that forwarders have the path /opt/splunk/etc/system/local where you can find files like inputs.conf, ... by siemteam Explorer in Getting Data In 02-19-2019 0 4	0	4
Missing Continuously Monitor and Index Once setting option in Add Data>Files & Directories Missing Continuously Monitor and Index Once setting option in Add Data>Files & Directories.Due to this i am unable to... by Pravallika123 New Member in Getting Data In 02-19-2019 0 1	0	1
Two Indexers - Blacklist Data to Specific Indexer Good morning all- I'm working on a design in my lab where we have two indexers. I have data for one of the indexes '... by DBattisto Communicator in Getting Data In 02-19-2019 0 2	0	2