Getting Data In

Community Activity

Extracting data from nested json payload of varying size Hi, I have events coming into splunk with payload of nested json array type. The elements in the array are of the sa... by dhruv101 Path Finder in Getting Data In 07-05-2018 0 1	0	1
When will the scripted input run? We have the following - [script://.\bin\<name>.bat] disabled = 0 interval = 86400 Since the interval is 24 hours,... by ddrillic Ultra Champion in Getting Data In 07-05-2018 0 2	0	2
How I can index specific part of log ? Hello, I'm noob in this and I don't know still work with .conf files, I hope you can help me I have a universal forw... by rjfv8205 Path Finder in Getting Data In 07-05-2018 0 10	0	10
Why is HTTP Event Collector listening only on 127.0.0.1 (localhost) address? I enabled the HTTP Event Collector and I can see on my Centos 7 by running the ss -an command that it is listening on... by rvencu Path Finder in Getting Data In 07-05-2018 0 3	0	3
indexed time vs eventtime odd issue We have a couple of splunk envs running is aws. We rehydrated(deployed a new AMI) one of the env last week and this w... by a238574 Path Finder in Getting Data In 07-05-2018 0 3	0	3
apache splunk "Invalid language specified" issue Hi, I configure an apache site https://dev-dit.th.gov.bc.ca/en-US/app/cars_events/event_summary_html I got "Inval... by erictse2 Engager in Getting Data In 07-05-2018 1 0	1	0
Using TCP data input to receive from switch sending data in raw format protocol buffers Hi, I am trying to receive data in splunk using TCP Data input from switch at port 20010. The data is in raw format(s... by sawgata12345 Path Finder in Getting Data In 07-05-2018 0 3	0	3
REST API call failing to PingID but works elsewhere Hi, We have used POSTMAN to confirm a REST API call works to PingID PingOne. When using the REST API within Splunk, ... by craigpbrown New Member in Getting Data In 07-05-2018 0 0	0	0
Identifying empty file upload on Splunk Hi Team, I have folder in which batch jobs loads the data files which are being consumed by Splunk. The data files a... by ashish9433 Communicator in Getting Data In 07-04-2018 0 6	0	6
Can't get all rows from CSV I monitor folder on one server with SplunkUniversalForwarder installed. the configuration of input.conf as below: ... by twtyj New Member in Getting Data In 07-04-2018 0 7	0	7
post DB query output and logs Splunk HEC Hi All, Need assistance, I have requirement to send Oracle DB query output data/logs to Splunk HEC and some of the l... by kpavan Path Finder in Getting Data In 07-04-2018 0 2	0	2
Sparse Events in Multi-Year Log File with No Years in Timestamps I'm tasked with consuming a log file with year-less timestamps ranging back to September 20th 2015. The strptime for... by ATB_Jesse Explorer in Getting Data In 07-04-2018 0 6	0	6
Sending same data to multiple destinations Hi , I need to send same data to Splunk as well as one 3rd Party tool. Can this be achieved by using Splunk? I tri... by ajaylowes Path Finder in Getting Data In 07-04-2018 0 2	0	2
How to rename a sourcetype based on the source on my indexer within a custom app? Hi, I am trying to rename a sourcetype based on the source on my indexer within a custom app so i created props.conf... by ugruner Explorer in Getting Data In 07-04-2018 0 3	0	3
Can I send cisco syslog messages to a universal forwarder and make it send logs to an indexer? hi I am already a basic user of splunk to monitor our networking equipment syslogs now I want to install universal f... by NimaBokhar Path Finder in Getting Data In 07-04-2018 0 1	0	1
Failed to read size=10 event(s) from rawdata in bucket I have a couple panels that are giving me an error: Failed to read size=10 event(s) from rawdata in bucket Rawdata na... by dcrooks_cbp New Member in Getting Data In 07-04-2018 0 2	0	2
How can a forwarder monitor a dynamic path? How can a forwarder be setup to monitor files with a dynamic path? For instance, I have a folder structure such as t... by mawomommoh Path Finder in Getting Data In 07-04-2018 0 8	0	8
Logs from Microsoft Azure Active Directory Reporting Add-on for Splunk are in Chinese. Tried encoding it by setting the CHARSET value to AUTO as well as GB18030 in props.conf file. But still the same issue. Any thoughts what might resolve this issue? Logs from Microsoft Azure Active Directory Reporting Add-on for Splunk are in Chinese. Tried encoding it by setting t... by pramach New Member in Getting Data In 07-03-2018 0 0	0	0
Why is the forwarder not working on Windows 10? I configured a Splunk Universal Forwarder on Windows 10. I also installed Splunk light on another Windows 10 computer... by rayeverestnatur Explorer in Getting Data In 07-03-2018 0 6	0	6
What ports need to be opened on the Windows 10 Defender Firewall to allow communication between the Universal Forwarder and Splunk? I am trying to connect a Universal Forwarder on a Windows 10 computer to Splunk on another Windows 10 computer. by rayeverestnatur Explorer in Getting Data In 07-03-2018 0 4	0	4
Splunk add monitor not sending log to splunk cloud Hi I am newbie. I have installed splunk universal forwarder on windows client to forward log on Splunk Cloud. When I ... by aanataliya Explorer in Getting Data In 07-03-2018 0 1	0	1
Please help me Time_PREFIX I have logs that send from syslog server, so there are 2 timestamps. I would like to use 2nd timestamp to be _time by... by karn Path Finder in Getting Data In 07-03-2018 0 3	0	3
Splunk not reading the new file created after 2 months Hello Splunkers, I have a situation where in a log file is created by the application after a long duration of 2 mon... by ankithnageshshe Path Finder in Getting Data In 07-03-2018 0 7	0	7
eliminate unnecessary values when indexing good morning I want to ignore certain elements of a log when indexing them, for example: field0 \| x \| x \| x \| ... by efaundez Path Finder in Getting Data In 07-03-2018 0 9	0	9
How to input an excel file from an email automatically Hello, everyday I have an email with an Excell file attached. To input the data in Splunk, I have to save the file, ... by Alaza Explorer in Getting Data In 07-03-2018 0 7	0	7