Getting Data In

Community Activity

Sending 2 logtypes to 2 different splunk environments I have a few servers that have universal forwarders that need to be updated where I can send the Application data to ... by FPERVIL Explorer in Getting Data In 03-01-2024 0 3	0	3
Create custom fields at indextime on Heavy Forwarders Hi at all,I have to create a custom field at index time, I did it following the documentation but there's something w... by gcusello SplunkTrust in Getting Data In 03-01-2024 0 20	0	20
rebuild a syslog event Hi Folks, I have a quick question.currently I have a syslog event and I need to see in splunk the raw data the info i... by asabatini Splunk Employee in Getting Data In 03-01-2024 0 4	0	4
How to monitor Apache Hadoop clusters with Splunk Enterprise 6 or later versions? I found the app - Splunk App for HadoopOps but it only supports Splunk Enterprise 5. I am now using Splunk Enterprise... by xingsd163 New Member in Getting Data In 03-01-2024 0 6	0	6
How can I install a forwarder on an AWS:EC2 instance to send data to a local Server? We have recently moved some of our applications to the AWS cloud and now I am being tasked with: "install and configu... by mlinebarger Explorer in Getting Data In 02-29-2024 2 7	2	7
identify the sender of an HEC data flow i at all,I'm ingesting data using HEC in a distributed infratructure using a Load Balancer to distribute traffic from... by gcusello SplunkTrust in Getting Data In 02-29-2024 0 1	0	1
Splunk Cloud Syslog Logs Hello Everyone, New to splunk in my current role, we have had to downgrade our firewall version and switch it to a p... by Atriox New Member in Getting Data In 02-29-2024 0 2	0	2
Monitor memory performance for windows servers Hi Team,As we need to monitor memory by process for each windows hosts. As checked we couldn't find any processes for... by Pooja1 Loves-to-Learn Everything in Getting Data In 02-29-2024 0 10	0	10
Setting searchable retention while creating Index from GUI Hi,I am starting with splunk admin and is confused about one topic. It might be silly.While creating an index, we get... by man03359 Communicator in Getting Data In 02-29-2024 0 3	0	3
splunk ingestion New Splunk instance throwing error after deploying apps. Please help Root Causes --Vevents from tracker.log have not ... by Mr_Sneed Explorer in Getting Data In 02-28-2024 0 1	0	1
Unable to install splunk Installing Splunk 9.2.0.1 on Windows Server 2019 ends prematurely.I get the issue if install the .msi in cmd with /pa... by trha_ Loves-to-Learn in Getting Data In 02-28-2024 0 2	0	2
Use source path time when ingesting data I have the following source .I want to extract time from source when data is ingesting source="/logs/gs/ute-2024-02-0... by power12 Communicator in Getting Data In 02-28-2024 0 3	0	3
Network folder monitoring Hello SplunkerIn my request, I want to monitor the below files, which are under the network folder. I have configured... by uagraw01 Motivator in Getting Data In 02-28-2024 0 21	0	21
Can not choose default sourcetype=_json while onboarding We can not choose default source type _json while onboarding.Need to extract the json data within the log file, which... by Sandivsu Loves-to-Learn Lots in Getting Data In 02-28-2024 0 2	0	2
Splunk add on for Cyber Ark flawed? Looking at the Splunk add on for Cyber Ark, it appears the process is flawed in thatthe Cyber Ark supplied ./Syslog/R... by burnalting Explorer in Getting Data In 02-28-2024 0 0	0	0
Uninstalling splunk forwarder 6.2.3.264376 Trying to uninstalling old version of splunk forwarder, but the msi isn't on the machine.When attempting to unistall,... by nmboner New Member in Getting Data In 02-27-2024 0 1	0	1
Need help ingesting /var/log/mail.log.1 I have a number of log-rotated files for mail.log in the /var/log folder on a unix system. The /var/log/mail.log file... by rene_splunk Explorer in Getting Data In 02-27-2024 0 2	0	2
Why is Splunkd is restarting itself? hello,I have installed splunk on my server and I found many process of splunkd restart, and consume much memory.How I... by snowee Engager in Getting Data In 02-27-2024 0 3	0	3
Log parsing - JSON Hi SMEs, morning I have a situation where logs are coming from an application recently on-boarded in below format, se... by pm2012 Explorer in Getting Data In 02-26-2024 0 1	0	1
Multiline logs coming in single log Hi SMEs, there are logs coming from one of the application in one single event. How to split it in a seperate log eve... by pm2012 Explorer in Getting Data In 02-26-2024 0 1	0	1
HTTP event collector -- error with data format? I want to try to inputting a simple event to HTTP event collector just to test if it works. I think it was able to fi... by tamduong16 Contributor in Getting Data In 02-26-2024 0 7	0	7
help with regex for masking? I need to mask data before it being index. my sample his log structure."2023-11-02 06:53:00 xx.xxx.xxx.xx GET /Securi... by abi2023 Path Finder in Getting Data In 02-26-2024 0 3	0	3
Azure MFA ingestion into Splunk - does "Splunk Add on for Microsoft Azure" support that ingestion? My company is transitioning from an on-premise MFA setup within ADFS to the Azure MFA setup. What's the best approac... by dkmcclory Explorer in Getting Data In 02-26-2024 0 1	0	1
Splunk report to fetch Azure active snapshot details. Hello experts... I need help... I want to fetch Azure snapshot details... I want active snapshots only... I don't nee... by jatin Explorer in Getting Data In 02-26-2024 0 4	0	4
Splunk report to fetch Azure orphaned disk details. Hello experts... I need help... I want to fetch Azure orphaned disk details... Can someone share splunk query for the... by jatin Explorer in Getting Data In 02-26-2024 0 5	0	5