Getting Data In

Community Activity

	How to optimize the ingestion of data from Splunk Universal Forwarder to Splunk Indexer I have a splunk universal forwarder, which is indexing a 1 GB log file to a Splunk Indexer. The problem I am facing i... by sdhiren Explorer in Getting Data In 03-14-2024 0 2	0	2
	HOw to import ODL files Is Oracle Diagnostic Logging ( ODL) format supported in any way by Splunk ?On the forum I have found only one topic r... by kp_pl Path Finder in Getting Data In 03-14-2024 0 2	0	2
	line breaker event breaker 當我在SH設置好props.conf後去看我的uf端並重啟就會出現以下錯誤:Checking conf files for problems...Invalid key in stanza [web:access] in /opt/s... by ryanaa Explorer in Getting Data In 03-14-2024 0 1	0	1
	how to identify sourcetype forbetter parsing I need help in understanding that what sourcetype would be ideal to parse logs of this File type by krutika_ag Path Finder in Getting Data In 03-14-2024 0 2	0	2
	Splunk - Rest API - Curl - Failing with Unbalanced Quotes Hi, I'm trying to write data to outputlookup file by doing a REST API Call (by running a search query).The below comm... by Maries Explorer in Getting Data In 03-14-2024 0 4	0	4
	Cant ingest .gz syslog files - was already indexed as a non-archive, skipping I have .gz syslog files but I am unable to fetch all filesFor each host(abc) it has 23 .tgz files with extension l... by power12 Communicator in Getting Data In 03-13-2024 0 1	0	1
	Error proofpoint TAP : When trying to retrieve the last poll time, multiple kvstore records were found We have installed "Proofpoint TAP Modular Input" add-on on victoria search head and created input (api call) to fetch... by as_lyric New Member in Getting Data In 03-13-2024 0 0	0	0
	What could prevent the monitoring of papercut logs? I'm collecting all other logs ie. wineventlogs, splunkd logsthe inputs.conf is accuratethe splunk user has full acces... by dspencer Engager in Getting Data In 03-12-2024 0 1	0	1
	Duplicated values on count When I do an stats count my field it return the double of the real number index=raw_fe5_autsust Aplicacao=HUB Endpoin... by vinihei_987 New Member in Getting Data In 03-12-2024 0 3	0	3
	Spike in log ingestion only on weekends Hello,Can anyone assist in determining why my splunk instance ingest large amounts of data ONLY on the weekends? Thi... by ayoungUSU New Member in Getting Data In 03-12-2024 0 2	0	2
	How to consolidate Thousand Eyes into Splunk to centralize alerts on the dashboard? Hi Team,Hi Splunk Team, could you guide me through the process on how to consolidate Thousand Eyes into Splunk to cen... by Pooja1 Loves-to-Learn Everything in Getting Data In 03-12-2024 0 4	0	4
	Splunk Not ingesting Referring to the below inputs.conf for one of my windows server , as you can see, there is some whitespace at the en... by YJ Explorer in Getting Data In 03-12-2024 0 1	0	1
	Whitelisting/Allow list for IP for HEC ingestion I tried to whitelist an ip address for HEC log ingestion and got the error message"Subnet overlaps Private IP block" ... by Timaaj New Member in Getting Data In 03-11-2024 0 1	0	1
	send log to bucket s3 hello all,I would need the logs to be sent to my S3 bucket smartstorage after 1 month from my security index, but the... by toporagno Explorer in Getting Data In 03-11-2024 0 1	0	1
	How to Traverse Nested JSON Structures in Splunk for Process Event Analysis This is my JSON data. How should I write a query syntax to directly traverse to the last parentProcess, and then prov... by snowywar Engager in Getting Data In 03-11-2024 0 2	0	2
	Question about inputs.conf [monitor:///...] Hi there.A simple question, it's not for a real usage, just a curiosity Does UF block inputs for system paths by def... by verbal_666 Builder in Getting Data In 03-10-2024 0 6	0	6
	Azure Devops Git activity logs in Splunk Has anyone tried this integration, I am facing issues while integrating this using this app https://splunkbase.splunk... by ps23 Explorer in Getting Data In 03-10-2024 0 0	0	0
	Manually adding static file into paloalto index with Splunk_TA_paloalto We had a problem with our syslog server and a bunch of data went missing in the ingest. The problem was actually caus... by calvinmcelroy Path Finder in Getting Data In 03-09-2024 0 1	0	1
	TrackMe - Remote Deployment Account - SplunkCloud Dear Splunk Community, I am here seeking your thoughts and suggestions on the error I am facing with TrackMe ERROR se... by aavyu20 Engager in Getting Data In 03-09-2024 0 1	0	1
	splunk universal forwarder error installation on Windowa via PowerShell Getting this error via Power Shell for the Splunk Universall installation Error below The term 'C:\Program Files\Sp... by lumi Loves-to-Learn Lots in Getting Data In 03-09-2024 0 1	0	1
	how to get Logs from Azure servers to On-prem splunk? Hello, What is the best way to get windows logs and linux logs from aroung 200+ servers in Azure to on-prem splunk e... by kiran331 Builder in Getting Data In 03-08-2024 0 12	0	12
	Pie chart colors not changing when only one value I have a query where I am counting the PASS and fail and displaying it as a pie-chart.Also I modified the search so t... by power12 Communicator in Getting Data In 03-08-2024 0 2	0	2
	Which resources are affecting Splunk Enterprise Data Pipeline? When the index pipeline begins backing up at any stage, which resources are responsible for the bottleneck. Obviously... by rbakeredfi Explorer in Getting Data In 03-08-2024 0 3	0	3
	How can i integrate Workspace one logs into Splunk? Can someone guide me on ingestion of Workspace one logs into splunk by Abhirup89 Explorer in Getting Data In 03-08-2024 0 5	0	5
	Specific index stopped receiving logs. the SH _internal logs had an error"Unable to read from raw size file" Hello,We had an index that stopped receiving logs. Since we do not manage the host sending the logs I wanted to get ... by ITSplunk117 Path Finder in Getting Data In 03-08-2024 0 1	0	1