Getting Data In

Getting Data In
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
Community Activity
dharveynswccd

Why did my Splunk account lose permissions on the syslog collector server?

Good morning. Came in today and noticed that no logs were being fed to Splunk from my Linux syslog collector. This ...
by dharveynswccd Path Finder in Getting Data In 02-12-2019
0 4
0
4
mbabakov

Select the contents of the key-values fields from the string

Hi! There is a log with such records: Dec 17 10:08:38 10.52.137.1 Apr 3 22:46:57 2012 930-RTR-944 %%10SSH/6/SSH_LO...
by mbabakov Explorer in Getting Data In 02-11-2019
0 14
0
14
akshatj2

How to integrate Tanium with Splunk?

Hi, We need to integrate Tanium with Splunk but it seems there are no app/or add-on available. I tried to search onl...
by akshatj2 Path Finder in Getting Data In 02-11-2019
0 7
0
7
stevescottmb

TCP Input to Splunk lnput from SAAS App

I have a java application running in an AWS instance. I want to use the following log4j2 appender to push logs direct...
by stevescottmb New Member in Getting Data In 02-11-2019
0 2
0
2
lmjoin

Splunk indexes.conf by deployment server

I have installed search head cluster and want pushing configuration by deployment server . But unable to find how to ...
by lmjoin Explorer in Getting Data In 02-11-2019
0 30
0
30
sboogaar

Why is not all data in the results of my query

Based on (https://answers.splunk.com/answers/709936/get-value-from-nested-json.html#answer-709944) I came up with a q...
by sboogaar Path Finder in Getting Data In 02-11-2019
0 4
0
4
vaibhavvijay9

How to monitor Apache logs i.e create dashboards for them?

Hi All, I want to monitor the error logs using Splunk. And create dashboards for the same. Sample logs : [Sun Jul ...
by vaibhavvijay9 New Member in Getting Data In 02-11-2019
0 1
0
1
jboffin

How do I get Splunk Light Free trial login issue resolved?

Mac OS 10.12.6 Sierra Installed Splunk Light Free trial Started it and had troulbe logging in. Finally I was able to ...
by jboffin New Member in Getting Data In 02-11-2019
0 0
0
0
schose

Has anyone successfully configured _HTTPOUT_ROUTING in outputs.conf?

hi all, i read about the _HTTPOUT_ROUTING in outputs.conf at https://docs.splunk.com/Documentation/Splunk/7.1.1/Forw...
by schose Builder in Getting Data In 02-11-2019
1 9
1
9
litmuspaper

Can you help me extract the information I want from the following JSON data (mvzip, mvindex, split)?

Please help me! I have indexed JSON data, but I cannot extract the data as I want. Below is the raw data. ####RAW D...
by litmuspaper Loves-to-Learn Lots in Getting Data In 02-11-2019
0 2
0
2
ifeldshteyn

Splunk Forwarder Field Extractions from Source

Hello, I think I know the answer but just want to confirm it. I have a Universal Forwarder and want to extract a fie...
by ifeldshteyn Communicator in Getting Data In 02-10-2019
0 5
0
5
sboogaar

How do you assign values to a variable based on a name in a nested JSON?

We are working with the following JSON: { "datapoints": [ { "name": "filesystem.inode.total1", ...
by sboogaar Path Finder in Getting Data In 02-10-2019
0 7
0
7
emdeex

How to get Splunk to fetch JSON data from Enphase REST API?

Hi All, I'm brand-new to Splunk, just found it... Enphase (www.enphase.com) is a manufacturer of Solar PV Micro-Inve...
by emdeex New Member in Getting Data In 02-10-2019
0 5
0
5
martin_mueller

Modify _raw, collect into second index - how to best retain host, source, sourcetype?

First off, TL;DR: How to best anonymize/hash/encrypt parts of _raw while keeping everything else as-is? I've got var...
by SplunkTrust SplunkTrust in Getting Data In 02-10-2019
4 4
4
4
jonsaenz

s3 add-on adding data

Splunk is installed s3 add-on is installed. I have gone to data inputs and added the amazon s3 bucket we wanted. How...
by jonsaenz Engager in Getting Data In 02-09-2019
2 4
2
4
sboogaar

Split json into multiple events and sourcetype

Lets say I have the following json data onboarded. { "slaves": [{ "id": "1234", ...
by sboogaar Path Finder in Getting Data In 02-08-2019
0 1
0
1
kmarciniak

Can you explain Indexer functionality with inputs.conf configured for /var/log/?

I have Indexers in a cluster running Splunk_TA_nix. I'm monitoring /var/log in inputs.conf. I can see the log events ...
by kmarciniak Path Finder in Getting Data In 02-08-2019
0 4
0
4
xfaith

Can you help me figure out how to use UDP to transmit data from one heavy forwarder to another heavy forwarder?

I'm trying to set up a test environment to be used in production. Will be taking data from another Splunk heavy forw...
by xfaith New Member in Getting Data In 02-08-2019
0 3
0
3
ManchitMalik

Blocked Queue on Splunk HF

hi, I can see blocked=true in metrics.log of Splunk heavy forwarder. Blocked Queues are: typingqueue, aggqueue, parsi...
by ManchitMalik Explorer in Getting Data In 02-08-2019
0 2
0
2
rjulie

initcrc error

hi, I have a lot of error when splunk try to decrompess .gz files my inputs.conf : [monitor://D:\xxxxxx\] source ...
by rjulie New Member in Getting Data In 02-08-2019
0 1
0
1
maggietempleton

How to parse JSON within Docker JSON?

Hello, I've been trying to parse logs from Docker and used this Splunk answer (https://answers.splunk.com/answers/61...
by maggietempleton Engager in Getting Data In 02-08-2019
1 4
1
4
venkataharish

which mechanism used in indexers ?

Hello guys, Recently i have interviewed with a question like, which service or mechanish is used to get data form ...
by venkataharish New Member in Getting Data In 02-08-2019
0 1
0
1
ankithreddy777

Sending data from one UF to other UF

Can we send cooked data from one universal forwarder to other Universal Forwarder by enable [splunktcp] on receiving ...
by ankithreddy777 Contributor in Getting Data In 02-08-2019
0 8
0
8
fxyfrank_acn

What are the sequence of execution transforms across different stanza and locations?

Hi, We want to change sourcetype and then send data to two different Splunk Indexers. What is happening is the sour...
by fxyfrank_acn Explorer in Getting Data In 02-07-2019
0 1
0
1
mruchi1004

How can I Read HDFS data into Splunk?

I have an HDFS path where new data is being written whenever my job runs. My jobs are already logging into Splunk . H...
by mruchi1004 New Member in Getting Data In 02-07-2019
0 4
0
4
Get Updates on the Splunk Community!

Quantify Your Splunk Investment Impact: Introducing Savings Metrics to Value Insights

Building on the foundation established in our initial Value Insights releases, we are introducing the Savings ...

Event Series: Telemetry Pipeline Management

Balancing Scale and Spend: Gaining Control Over High-Volume Metrics in Splunk Observability Cloud As ...

Kick the Tires Before You Commit: A Hands-On Tour of the Splunk Observability Cloud ...

Evaluating an enterprise observability platform usually goes like this: fill out a form, get a free trial with ...
Top Solution Authors
View All