Getting Data In

Community Activity

How to edit our forwarder inputs.conf for NetApp to forward data to our indexer? We have moved some of our jobs over to a NetApp configuration on a brand new server, but I cannot get the data forwar... by thompsonsgg New Member in Getting Data In 07-22-2016 0 3	0	3
New VMWare app I saw the new VMWare app ath .conf2011. When will it be available for download? by jphelps2011 New Member in Getting Data In 07-22-2016 0 4	0	4
How can I filter out HTTP 301 and 302 on a linux Heavy forwarder so that it doesn't forward those logs to the cloud indexer I am new to Splunk and can see previous post for filtering out Security logs. Please would anyone be able to help wit... by eosi New Member in Getting Data In 07-22-2016 0 3	0	3
Having some trouble with an infinite forwarding loop - Windows Event Logs Hello I'm having a problem with Windows Event logs coming into Splunk. Windows Events log every time that the Forwa... by janderson19 Path Finder in Getting Data In 07-22-2016 2 5	2	5
Intermediate forwarder connections timeout I have about 1300 hosts configured with uni forwarders sending data to a single heavy forwarder. The heavy forwarder ... by mlindsey Explorer in Getting Data In 07-22-2016 5 6	5	6
Universal Forwarder not sending data - timed out I've installed a universal forwarder on a linux box and configured it, but I'm getting the following errors. I'm run... by john_byun Path Finder in Getting Data In 07-22-2016 1 8	1	8
CSV files with scientific notation fields I have a folder monitored by Splunk where CSV files are uploaded and sucked into Splunk. Splunk reads them no sweat a... by external_alien_ Explorer in Getting Data In 07-22-2016 1 3	1	3
Parse multiple default or initial Values to Text form input Hello Community, My Problem: I have a Dashboard, where I want to parse multiple default or initial Values to a Text... by GGMJhgitR New Member in Getting Data In 07-22-2016 0 2	0	2
managing per index data retention I need to retain data for 6 months with 400 GB of data max in warm and 5 tb in cold. Will the below work? I am confus... by ebaileytu Communicator in Getting Data In 07-22-2016 0 4	0	4
How to configure 90/180/366 days retention for an index? We would like to enable frozenTimePeriodInSecs and enableTsidxReduction = true with timePeriodInSecBeforeTsidxReducti... by srmohan New Member in Getting Data In 07-21-2016 0 1	0	1
extracting timestamps from filenames - regex never matches Hi, I'm new to splunk, and I know there have been a thousand questions on extracting timestamps out of filenames, and... by blakezinc Engager in Getting Data In 07-21-2016 2 4	2	4
How to integrate unix script in splunk Hi, I am very much comfortable in Unix Shell Scripting, I would like to know how it is possible to intergrate it wit... by abhayneilam Contributor in Getting Data In 07-21-2016 0 4	0	4
UF - Route inputs to specific indexers based on the data's input I have a UF running at version 6.0.4. I have configured an inputs.conf value to route to a different indexer. The UF ... by lisaac Path Finder in Getting Data In 07-21-2016 0 5	0	5
Static drop down menu for dashboard isn't working, need help. I've created a dashboard which can read pageviews the number of users for an application the most frequent users. I'm... by pladamsplunk Explorer in Getting Data In 07-21-2016 0 8	0	8
What happens when Universal Forwarder loses its filesystem? Has anyone seen what happens to a Universal Forwarder when the filesystem it is running from goes away? I just fou... by jhupka Path Finder in Getting Data In 07-21-2016 0 3	0	3
Getting - "Splunk Light setup wizard ended prematurely" I have just downloaded free splunk light to check it out. I get the above message as soon as I run the install progr... by wstaton New Member in Getting Data In 07-21-2016 0 4	0	4
Thawing frozen data is going missing Hi all, We are currently doing backups on frozen buckets before they're removed. Recently we had a request to restor... by alekksi Communicator in Getting Data In 07-21-2016 0 10	0	10
unable to index files after deleting events and creating new sourcetype I know splunk has always been a pain when trying to "fix" indexed data. I have deleted events from monitored paths i... by Cuyose Builder in Getting Data In 07-20-2016 0 1	0	1
Is there a way to rename CSV column headers prior to indexing the data? I've got a data source with a header like this IP Address,Internal Domain,External Domain,Internal Dns,External Dns,... by jwhughes58 Contributor in Getting Data In 07-20-2016 0 2	0	2
I am a Splunk Cloud customer. How can I manage my forwarders if I don't have an enterprise key? I have many forwarders sending data to Splunk Cloud. I would love to be able to manage them with a deployment server,... by lagnone_splunk Splunk Employee in Getting Data In 07-20-2016 0 1	0	1
I am a Splunk Cloud customer. I want to use the HTTP Event Collector feature. What do I need to do? How do I configure the HEC with the GUI? How do I generate a token? How do I test that it's working? by lagnone_splunk Splunk Employee in Getting Data In 07-20-2016 2 1	2	1
load balancing functionality that comes with the forwarder.?? Hello can any one guide me how to enable or use load balancing functionality that comes with the forwarder??? doe... by AzmathShaik Path Finder in Getting Data In 07-20-2016 0 1	0	1
What are best practices when deploying apps across an indexer clustering environment, and to which nodes? We have a cluster master managing 2 indexers where we can push our indexes.conf in master apps, we have a single sear... by Cuyose Builder in Getting Data In 07-20-2016 0 5	0	5
How to connect to Splunk's REST API? Our Web/mobile team is considering an innovation project involving a Splunk integration. Basically, better tracking/e... by Kaushikkatta03 Explorer in Getting Data In 07-20-2016 0 1	0	1
Is there a way to distribute cluster-bundle through REST API? I know that for doing the distribution of cluster-bundle there exist two documented ways: Using the WEB UI and also u... by felipe_conde Engager in Getting Data In 07-19-2016 4 8	4	8