Getting Data In

Community Activity

logging all linux logs to syslogs ng for heavy forwarder Hello All, I need to send all the LOG files from the client on to the server which is running syslog NG. now whats w... by ranjitbrhm1 Communicator in Getting Data In 03-16-2018 0 5	0	5
Ideal indexes.conf Hi, Can I please know the ideal configurations for indexes.conf ? Should we include parameters like homePath.maxD... by nawazns5038 Builder in Getting Data In 03-16-2018 0 8	0	8
Indexing a csv file via the forwarder When we index a csv file via the forwarder we see the following - Why don't we see separate events? by ddrillic Ultra Champion in Getting Data In 03-16-2018 0 3	0	3
Can we have same field extraction for the same sourcetype in 2 different apps? Hi Team, Can we have same field extraction for the same sourcetype in 2 different apps? If I already have a Field Ex... by newbie2tech Communicator in Getting Data In 03-16-2018 0 2	0	2
What is the difference between maintenance mode versus off-line during a Linux patch? We have a Linux patch which requires a server reboot scheduled tonight for one out of the ten indexers. The patch wou... by ddrillic Ultra Champion in Getting Data In 03-16-2018 0 3	0	3
How can I collect to generate more sample data? I'm trying to perform a collect with the intention of making my data more heterogeneous. Meaning if I have data from ... by greggz Communicator in Getting Data In 03-16-2018 0 3	0	3
Are Excel files supported by Splunk? Are Excel files supported by Splunk? We uploaded via the forwarder a file and it doesn't look pleasant ; -) $ tail ... by ddrillic Ultra Champion in Getting Data In 03-16-2018 0 2	0	2
Why does the Linux Centos Forwarder does not automatically load changes from inputs.conf? Hi, We have some centos 7.4 systems with Splunk forwarder 7.0.0 installed. Changes for data inputs are distributed t... by magriii Explorer in Getting Data In 03-16-2018 0 3	0	3
Why is Splunk ignoring my files? I have a folder set up on a Linux machine that a Splunk forwarder is monitoring. This folder is set up to receive FT... by ksextonmacb Path Finder in Getting Data In 03-16-2018 1 9	1	9
How can I forward data in Windows Universal Splunk Forwarder 6.5.0 and a CentOS Splunk Entreprise 6.5.0? Hi, i'm sorry for my poor English, I have a Windows Universal Splunk Forwarder 6.5.0 and a CentOS Splunk Entreprise 6... by myitlab1000 Explorer in Getting Data In 03-16-2018 0 4	0	4
Error message is displayed when I rebuild archive data. When I rebuild archive data, ERROR message is displayed like below. ERROR ProcessTracker - (subchild_43__RollFixMeta... by yutaka1005 Builder in Getting Data In 03-16-2018 1 10	1	10
Splunk Universal forwarder 6.6.4 installation on Tru64 UNIX V5.1B Hi All, I am trying to install the universal forwarder on a UNIX Tru64 server. I am using the zip version of splunkf... by soumyacharya91 Path Finder in Getting Data In 03-16-2018 0 4	0	4
configured sources for index in inputs.conf Hi All, I would like to get all the source files configured(in inputs.conf) to particular index. Whether the source ... by charyjpmc New Member in Getting Data In 03-16-2018 0 4	0	4
Cisco WSA-scp upload-certificate issue Hi guyz, I stuck up in a position when I try to send logs to splunk from cisco WSA by SCP method. Its showing certifi... by gopakumarmk New Member in Getting Data In 03-16-2018 0 0	0	0
Download PDF from search c# API Hi I need a way to generate PDF (same format as when generated on the UI) using the API provided by SPLUNK. There a... by alexsmirnoff New Member in Getting Data In 03-15-2018 0 0	0	0
How do I load the custom delimited file with header into splunk I have a delimited header file of the below format: A ~~ B ~~ C ~~ D ~~ E 1 ~~ 2 ~~ 3 ~~ 4 ~~ 5 2 ~~ 3 ~~ 4 ~~ 5 ~~ ... by khreddy Explorer in Getting Data In 03-15-2018 0 2	0	2
What are the requirements for a perfect Splunk JSON document? Our Sales Engineer told us that the Splunk json parser requires several specific things in the json document, in orde... by ddrillic Ultra Champion in Getting Data In 03-15-2018 1 7	1	7
Why am I getting error "Unable to locate secret used to encrypt/decrypt passwords for identities" after installing Splunk DB Connect? I received this error after installing Splunk DB Connect: 04-16-2015 16:06:54.035 +0300 ERROR AdminManagerExternal -... by vinchakov_a Path Finder in Getting Data In 03-15-2018 0 6	0	6
How to restrict Folder Ingestion based on timestamp? We're collecting text files into Splunk from numerous servers, but due to the growing size of the parent directory, i... by bteele New Member in Getting Data In 03-15-2018 0 2	0	2
Are wildcards supported for JSON? I've used the HEC to index some json data that looks kind of like this: { "FieldA_sec": 0.12443, "FieldB_sec... by chustar Path Finder in Getting Data In 03-15-2018 0 0	0	0
REST API endpoints for saved searches? I'm trying to find how to get the REST API endpoints for saved searches, but I'm finding conflicting information. Wou... by matstap Communicator in Getting Data In 03-15-2018 0 1	0	1
Splunk REST API: How to get deployment app version, author and description? I am trying to make some reports for apps and deployment apps. I was able to use: \| rest /services/apps/local to ... by joshuapetitt Path Finder in Getting Data In 03-15-2018 0 11	0	11
I have log files. I want to ignore all the lines after a particular line from a log file. Can I do this with the help of sedcmd command? If yes then please tell me how can I do that? EVENT_SESH;0;01/03/2018 22:57:27:5000;1;1;0;;;END OF IMPORT PROCESS FOR THE MASTER STORE - PENDING_TXT(0) after thi... by saibal6 Path Finder in Getting Data In 03-15-2018 0 2	0	2
Coverting EPOCH time to Hours, Minutes, Seconds format I have an issue where I have a number of fields in my data in following format of "%H:%M:%S" and they are stored as t... by jackreeves Explorer in Getting Data In 03-15-2018 0 5	0	5
What is the best practice when creating a custom index in a indexer? I have an indexer where I want to add index 'web' Looking at this page: http://docs.splunk.com/Documentation/Splunk/... by snorri Path Finder in Getting Data In 03-15-2018 1 9	1	9