Getting Data In

Community Activity

How to repack the installation package MSI for Splunk universal forwarder? Hey guys Is it possible to rebuild msi installation package for Splunk Forwarder? I want to assemble my installation... by Aleksey_18 New Member in Getting Data In 03-19-2018 0 3	0	3
I need a query that shows how much data is being logged into Splunk by each hosts in every hour The reason i need this query is, last month and few days ago we passed our license usage because one server alone gen... by loureni1 Explorer in Getting Data In 03-18-2018 0 7	0	7
In the netflow streaming app, why am I unable to see the netflow data? Hi There, I've configured the stream app and streamfwd.log as follow: netflowReceiver.0.ip = 192.168.1.2 netflowRece... by heskez Engager in Getting Data In 03-18-2018 0 2	0	2
How to troubleshoot this error when running the validate cluster-bundle"Archiver Failure - Failed to create archive file"? Upon running the validate cluster-bundle command we get the following error, how to troubleshoot this? As in another ... by mcraig88 New Member in Getting Data In 03-18-2018 0 1	0	1
logging all linux logs to syslogs ng for heavy forwarder Hello All, I need to send all the LOG files from the client on to the server which is running syslog NG. now whats w... by ranjitbrhm1 Communicator in Getting Data In 03-16-2018 0 5	0	5
Ideal indexes.conf Hi, Can I please know the ideal configurations for indexes.conf ? Should we include parameters like homePath.maxD... by nawazns5038 Builder in Getting Data In 03-16-2018 0 8	0	8
Indexing a csv file via the forwarder When we index a csv file via the forwarder we see the following - Why don't we see separate events? by ddrillic Ultra Champion in Getting Data In 03-16-2018 0 3	0	3
Can we have same field extraction for the same sourcetype in 2 different apps? Hi Team, Can we have same field extraction for the same sourcetype in 2 different apps? If I already have a Field Ex... by newbie2tech Communicator in Getting Data In 03-16-2018 0 2	0	2
What is the difference between maintenance mode versus off-line during a Linux patch? We have a Linux patch which requires a server reboot scheduled tonight for one out of the ten indexers. The patch wou... by ddrillic Ultra Champion in Getting Data In 03-16-2018 0 3	0	3
How can I collect to generate more sample data? I'm trying to perform a collect with the intention of making my data more heterogeneous. Meaning if I have data from ... by greggz Communicator in Getting Data In 03-16-2018 0 3	0	3
Are Excel files supported by Splunk? Are Excel files supported by Splunk? We uploaded via the forwarder a file and it doesn't look pleasant ; -) $ tail ... by ddrillic Ultra Champion in Getting Data In 03-16-2018 0 2	0	2
Why does the Linux Centos Forwarder does not automatically load changes from inputs.conf? Hi, We have some centos 7.4 systems with Splunk forwarder 7.0.0 installed. Changes for data inputs are distributed t... by magriii Explorer in Getting Data In 03-16-2018 0 3	0	3
Why is Splunk ignoring my files? I have a folder set up on a Linux machine that a Splunk forwarder is monitoring. This folder is set up to receive FT... by ksextonmacb Path Finder in Getting Data In 03-16-2018 1 9	1	9
How can I forward data in Windows Universal Splunk Forwarder 6.5.0 and a CentOS Splunk Entreprise 6.5.0? Hi, i'm sorry for my poor English, I have a Windows Universal Splunk Forwarder 6.5.0 and a CentOS Splunk Entreprise 6... by myitlab1000 Explorer in Getting Data In 03-16-2018 0 4	0	4
Error message is displayed when I rebuild archive data. When I rebuild archive data, ERROR message is displayed like below. ERROR ProcessTracker - (subchild_43__RollFixMeta... by yutaka1005 Builder in Getting Data In 03-16-2018 1 10	1	10
Splunk Universal forwarder 6.6.4 installation on Tru64 UNIX V5.1B Hi All, I am trying to install the universal forwarder on a UNIX Tru64 server. I am using the zip version of splunkf... by soumyacharya91 Path Finder in Getting Data In 03-16-2018 0 4	0	4
configured sources for index in inputs.conf Hi All, I would like to get all the source files configured(in inputs.conf) to particular index. Whether the source ... by charyjpmc New Member in Getting Data In 03-16-2018 0 4	0	4
Cisco WSA-scp upload-certificate issue Hi guyz, I stuck up in a position when I try to send logs to splunk from cisco WSA by SCP method. Its showing certifi... by gopakumarmk New Member in Getting Data In 03-16-2018 0 0	0	0
Download PDF from search c# API Hi I need a way to generate PDF (same format as when generated on the UI) using the API provided by SPLUNK. There a... by alexsmirnoff New Member in Getting Data In 03-15-2018 0 0	0	0
How do I load the custom delimited file with header into splunk I have a delimited header file of the below format: A ~~ B ~~ C ~~ D ~~ E 1 ~~ 2 ~~ 3 ~~ 4 ~~ 5 2 ~~ 3 ~~ 4 ~~ 5 ~~ ... by khreddy Explorer in Getting Data In 03-15-2018 0 2	0	2
What are the requirements for a perfect Splunk JSON document? Our Sales Engineer told us that the Splunk json parser requires several specific things in the json document, in orde... by ddrillic Ultra Champion in Getting Data In 03-15-2018 1 7	1	7
Why am I getting error "Unable to locate secret used to encrypt/decrypt passwords for identities" after installing Splunk DB Connect? I received this error after installing Splunk DB Connect: 04-16-2015 16:06:54.035 +0300 ERROR AdminManagerExternal -... by vinchakov_a Path Finder in Getting Data In 03-15-2018 0 6	0	6
How to restrict Folder Ingestion based on timestamp? We're collecting text files into Splunk from numerous servers, but due to the growing size of the parent directory, i... by bteele New Member in Getting Data In 03-15-2018 0 2	0	2
Are wildcards supported for JSON? I've used the HEC to index some json data that looks kind of like this: { "FieldA_sec": 0.12443, "FieldB_sec... by chustar Path Finder in Getting Data In 03-15-2018 0 0	0	0
REST API endpoints for saved searches? I'm trying to find how to get the REST API endpoints for saved searches, but I'm finding conflicting information. Wou... by matstap Communicator in Getting Data In 03-15-2018 0 1	0	1