Getting Data In

Community Activity

	how to get Logs from Azure servers to On-prem splunk? Hello, What is the best way to get windows logs and linux logs from aroung 200+ servers in Azure to on-prem splunk e... by kiran331 Builder in Getting Data In 03-08-2024 0 12	0	12
	Pie chart colors not changing when only one value I have a query where I am counting the PASS and fail and displaying it as a pie-chart.Also I modified the search so t... by power12 Communicator in Getting Data In 03-08-2024 0 2	0	2
	Which resources are affecting Splunk Enterprise Data Pipeline? When the index pipeline begins backing up at any stage, which resources are responsible for the bottleneck. Obviously... by rbakeredfi Explorer in Getting Data In 03-08-2024 0 3	0	3
	How can i integrate Workspace one logs into Splunk? Can someone guide me on ingestion of Workspace one logs into splunk by Abhirup89 Explorer in Getting Data In 03-08-2024 0 5	0	5
	Specific index stopped receiving logs. the SH _internal logs had an error"Unable to read from raw size file" Hello,We had an index that stopped receiving logs. Since we do not manage the host sending the logs I wanted to get ... by ITSplunk117 Path Finder in Getting Data In 03-08-2024 0 1	0	1
	logs with no timestamp automatically show +15 hrs of time stamp "CEF:0\|Bitdefender\|GravityZone\|6.35.1-1\|35\|Product Modules Status\|5\|BitdefenderGZModule=modules dvchost=xxx Bitd... by KulvinderSingh Path Finder in Getting Data In 03-07-2024 0 3	0	3
	splunk_hec exporter is failing "net/http: request canceled while waiting for connection Trying to setup splunk otel collector using the image quay.io/signalfx/splunk-otel-collector:latest in docker desktop... by Leelavinoth New Member in Getting Data In 03-07-2024 0 0	0	0
	Missing Splunk Logs - same configuration in development and production enviroment Hello,We have been investigating on missing 30% of Splunk logs in our production environment. I'm thinking it maybe d... by mappu Engager in Getting Data In 03-06-2024 0 3	0	3
	Why is my LINE_BREAKER parameter not breaking properly with multiple capture groups? Hello, I need help with perfecting a sourcetype that doesn't index my json files correctly when I am defining multip... by andrewtrobec Motivator in Getting Data In 03-06-2024 0 6	0	6
	Unable to monitor a windows file. What are some reasons why a UF wouldn't monitor a windows file assuming there is nothing wrong with any configs and t... by dspencer Engager in Getting Data In 03-06-2024 0 6	0	6
	Memory Spike on Universal Forwarder when specific inputs.conf stanza is included Hello,We have the universal forwarder running on many machines. In general, the memory usage is 200MB and below. Ho... by RyanPrice Engager in Getting Data In 03-06-2024 0 2	0	2
	Data inputs details for each index Hi,I'd lilke to create a detailed report with info including the type of forwarder, the average KB/s, the OS, the IP,... by hazardoom Engager in Getting Data In 03-06-2024 0 0	0	0
	Windows Eventlogs (Extract RAW from one splunk and import to another) We are currently changing our splunk server to a new one and during the change there was a mix up and we got data sen... by PatrikL Observer in Getting Data In 03-06-2024 0 3	0	3
	regex error Hi Team,While running the query I'm able see this error.but how to overcome this I have tried with spath command, but... by prasireddy Explorer in Getting Data In 03-06-2024 0 8	0	8
	CSV log unexpectedly breaking by lines Hello to everyone!I have a Win server with Splunk UF installed that consumes MS Exchange logsThis logs is stored in C... by NoSpaces Contributor in Getting Data In 03-06-2024 0 5	0	5
	How do I modify my rex command to remove directory location from path? Here is my current rex command - EventCode=1004 \| rex field=_raw "Files: (?<Media_Source>.+?\.txt)" \| table Media_... by jeradb Explorer in Getting Data In 03-05-2024 0 1	0	1
	Trying to push slurm data logs to Splunk How do I get slurm log content into Splunk? by taarmi Engager in Getting Data In 03-05-2024 0 2	0	2
	transforms.conf: Need to ignore specific events. I have a simply Splunk set-up. about 120 or so Linux servers (that are all basically appliances) w/ universal forwar... by Egyas Explorer in Getting Data In 03-05-2024 0 4	0	4
	Indexed only Partial Contents of log file Hi,We are monitoring whole file in index. As file is in huge in size. which indexed all the content of files.But we r... by dhirendra761 Contributor in Getting Data In 03-05-2024 0 3	0	3
	Catalogue Log/Data inputs details for each index Hi,We have around 340 indexes and I need to know which universal/heavy forwarder forwards data to which exact index. ... by hazardoom Engager in Getting Data In 03-05-2024 0 4	0	4
	Accept Commvault logs in on-prem Splunk servers Question: We are using Commvault Metallic to backup our O365 cloud-based user data in the Microsoft GCC. How can we... by pingli New Member in Getting Data In 03-04-2024 0 1	0	1
	Azure DevOps Daily Commits Info in Splunk Has anyone tried this add-on to pull the tfs commits into Splunk via Azure DevOps (Git Activity) - Technical Add-On. ... by ps23 Explorer in Getting Data In 03-04-2024 0 3	0	3
	s2s negotiation failed between forwarder running host and indexers Using splunkforwarder-9.0.2-17e00c557dc1.x86_64 on forwarder linux boxUsing splunk-9.0.4-de405f4a7979.x86_64 on index... by parth995 Loves-to-Learn Lots in Getting Data In 03-04-2024 0 2	0	2
	HEC Token Authentication Failures Dear Splunkers, If I could get an answer on how do I find which HEC token is causing authentication failures (num_of_... by anil19 Engager in Getting Data In 03-04-2024 0 1	0	1
	Splunk Enterprise security Filters I have installed the latest splunk with Splunk enterprise security on it.I have worked with enterprise security befor... by Nawab Communicator in Getting Data In 03-02-2024 0 11	0	11