Getting Data In

Community Activity

props config for logs Hi Splunk Community, I am trying to create a props.conf for the sample log file below. My goal is to * Delete th... by Strangertinz Path Finder in Getting Data In 05-07-2024 0 11	0	11
Splunk Integration How do i integrate my website hosted on AWS(ec2) with splunk? by devraajpandya11 New Member in Getting Data In 05-07-2024 0 3	0	3
Splunk Connect For Syslog - Sending syslog using Kiwi Syslog Message Generator (UDP 514) failed but TCP 514 success Hello. I am completely new at Splunk. Recently, I've recently taken on a role where I'll be working with Splunk quite... by azer271 Path Finder in Getting Data In 05-06-2024 0 3	0	3
Deployment Server cannot restart deployment clients after new changes have been downloaded We use a Deployment server to manage config of our UF fleet. Recent changes to privileges on clients are preventing t... by calvinmcelroy Path Finder in Getting Data In 05-06-2024 0 1	0	1
Field extractions from Application logs - pick specific value I have splunk logs where there is key word like <ref>BTB- Abcd1234<ref> as it's primary key for trade reference and ... by vijjuh Engager in Getting Data In 05-06-2024 0 1	0	1
How to ensure logs delivery to Splunk Hello Splunkers!Imagine a scenario:There is a test environment with Splunk being deployed in ubuntu-server 20.04 virt... by splunky_diamond Path Finder in Getting Data In 05-06-2024 0 7	0	7
Mupltiple whitelist in inputs.conf Hello,I need to monitor two different types of events for some servers, the authentication events (4624,4634,4625) fo... by marco_massari11 Communicator in Getting Data In 05-06-2024 0 8	0	8
Why am I getting the error"Unable to distribute to peer named X.X.X.X:YYYY at uri=X.X.X.X:YYYY using the uri-scheme=https because peer has status="Down" on my search head for all queries? I am getting the below error on my search head for all the queries. "Unable to distribute to peer named X.X.X.X:PPPP... by pavanae Builder in Getting Data In 05-05-2024 0 5	0	5
Filtering Syslog Inputs before Indexing (to optimize license usage) Hello I am referring to the following documentation Route and filter data - Splunk Documentation I would like to disc... by yh Path Finder in Getting Data In 05-05-2024 0 19	0	19
Splunk Enterprise differences and comparison Hello splunkers!I have a simple question regarding Splunk data models and regular searches, I have found some answers... by splunky_diamond Path Finder in Getting Data In 05-05-2024 0 6	0	6
Why are there duplicated Windows Security Logs? Hi, My problem is duplicated windows security logs. 2 or more log same as each other. why do that ? 03/18/2019 10:... by burakatabay Path Finder in Getting Data In 05-03-2024 1 10	1	10
does not perform log collection We have splunk installed and the collection was happening normally, but for a few days now the collection has stopped... by ArianeSantos New Member in Getting Data In 05-02-2024 0 2	0	2
Running a PowerShell script as admin in Splunk I have a PowerShell script that needs to be ran as admin to be able to load in all of the data. It returns a .csv fil... by jdhart1312 Loves-to-Learn Everything in Getting Data In 05-02-2024 0 2	0	2
Migration of indexer data from default location to new location We want to migrate cluster indexers data from default location that is from (opt/splunk/var/lib/splunk) to customize ... by mshakeb Loves-to-Learn Everything in Getting Data In 05-02-2024 0 3	0	3
HEC event field I need to connect data from a third party application via HEC to Splunk. It sends data in this format 1 event per req... by Haleb Path Finder in Getting Data In 05-02-2024 0 1	0	1
Splunk heavy forwarder vs universal forwarder Hello Splunk community. I have been searching for this question quite a lot and went through many articles, but it’s ... by splunky_diamond Path Finder in Getting Data In 05-01-2024 0 4	0	4
splunkd is not running I'm currently building my own home instance and I'm having some trouble with my UF. So far I've :installed the lates... by Exxnihiloo Engager in Getting Data In 04-30-2024 0 2	0	2
Zulu time Helloi read many topics on zulu time but i m not able to solde onei have a date in this way 2024-04-29T12:01:15.710Z ... by Laurent Explorer in Getting Data In 04-30-2024 0 3	0	3
Splunk ES Email alert and notable events are not getting triggered Hello, Splunk community! I have created a correlation search with the following search string: index="kali2_over_sys... by splunky_diamond Path Finder in Getting Data In 04-29-2024 0 2	0	2
send syslog event to third party server. Linux Hello there, I'm newbie to splunk and need your help please to forward syslog logs coming to splunk to another third ... by sichi New Member in Getting Data In 04-29-2024 0 1	0	1
Max of peak hour volume I need the Max of peak hour volume My Data TimeMakeModel Sold5:03HondaAccord5:07HondaCivic5:08HondaCivic5:10ToyotaC... by th1agarajan Path Finder in Getting Data In 04-29-2024 0 15	0	15
Monitor AD Group Changes? Hi All, Trying to understand how I can get the recent membership changes, query working for Domain Admins group. I w... by andybento New Member in Getting Data In 04-29-2024 0 4	0	4
Missing fields on Splunk data export & import I have one Splunk instance where I ran a search and exported the data in a csv file, xml file, and a raw file. The da... by CSReviews Loves-to-Learn in Getting Data In 04-28-2024 0 2	0	2
Splunk Connect for Syslog I have a sc4s deployment running in an ec2 instance. I followed the documentation provided here https://splunk.github... by matcher123 Loves-to-Learn Everything in Getting Data In 04-28-2024 0 1	0	1
How to send Open Telemetry log signals to Splunk Cloud Hi, Our application uses log4j2 logging framework. We are trying to send log signals created by Otel Logs SDK to Splu... by pp219 Observer in Getting Data In 04-28-2024 0 1	0	1