Getting Data In

Community Activity

How to edit inputs.conf to prevent WinNetMon from using up all my license? I enabled WinNetMon and need to throttle it back. Here is my inputs.conf: ###### Network monitoring ###### [WinNetMo... by brent_weaver Builder in Getting Data In 10-18-2023 2 12	2	12
How do I resolve the error: The lookup file could not be saved I am trying to save a lookup file in the Splunk App for lookup file editing and I get the error: The lookup file cou... by waJesu Path Finder in Getting Data In 10-18-2023 0 1	0	1
Map fields to sourcetype Hi All, I need help building a SPL that would return all available fields mapped to their sourcetypes/source Looking... by DanAlexander Communicator in Getting Data In 10-18-2023 0 4	0	4
How to monitor application services Hi All,we have some process related service like application services running in windows, how can i get those status.... by sekhar463 Path Finder in Getting Data In 10-18-2023 0 2	0	2
Why is my powershell script for input-stanza not working? Hi community! I've tried and exhausted all my brain cells but I still couldn't make this work. Any ideas?Below is dep... by morethanyell Builder in Getting Data In 10-17-2023 0 6	0	6
sending specific events to nullqueue using props & transforms I am trying to setup props & transforms to send DEBUG events to null queuei tried below regex but that doesnt seem to... by Sid Explorer in Getting Data In 10-17-2023 0 18	0	18
Data Models CIM compliance how to indetify data sources needed for the Data Sets individual fields Hi All, trying to identify what data source/sourcetype is needed for each individual field while performing Data Mode... by DanAlexander Communicator in Getting Data In 10-17-2023 0 2	0	2
Data onboarding, splunk-server field massing up the whole data can someone help me with this issue where splunk is reading the file, but 'adding' a information that is NOT in the o... by yohhpark Path Finder in Getting Data In 10-16-2023 0 5	0	5
Line breaker Hi Team, my requirement is write request is one event and Change Item into another event, please help me how to break... by vijreddy30 Loves-to-Learn Everything in Getting Data In 10-16-2023 0 3	0	3
transforms.conf conditional statement for INGEST_EVAL I am attempting to setup an INGEST_EVAL for the _time field. My goal is to check if the _time field is in the future ... by whunterj Explorer in Getting Data In 10-14-2023 0 2	0	2
Currently not seeing any eve.json data coming from the suricata box to the Splunk server [monitor:///var/log/suricata/eve.json] disabled=true sourcetype= suricata index = suricata Currently not seeing an... by wyomoose Engager in Getting Data In 10-13-2023 0 13	0	13
Query that lists systems that are using default passwords. I am looking for a query that can help me list or audit systems that are using default passwords or any other method ... by waJesu Path Finder in Getting Data In 10-13-2023 0 1	0	1
How to troubleshoot "SSL Validation Failed for " in Splunk AWS Add-on? While configuring an S3 input in the Splunk Add-on for AWS, I received an error message stating that "SSL Validation ... by adnankhan5133 Communicator in Getting Data In 10-13-2023 0 4	0	4
Is Splunk Universal Forwarder compatible with Amazon Linux? Is Splunk Universal Forwarder compatible with Amazon Linux? by deephi Explorer in Getting Data In 10-12-2023 0 4	0	4
Kafka-connect-Splunk: Issue in SetUp Connection in Confluent Hi Team,I am trying to create a topic manually using Confluent Control Center (localhost:9021) and then using Connect... by Bhagatamit44 New Member in Getting Data In 10-12-2023 0 0	0	0
No fields or timestamps extracted when indexing TSV from S3 bucket I have a standalone Splunk Enterprise (not Splunk Cloud) set up to work with some log data that is stored in an AWS S... by gauldridge Path Finder in Getting Data In 10-12-2023 0 5	0	5
require(['splunkjs/mvc'], function() { ... } gives me "require is not defined" Javascript error (SE 9.1.1) In a modified search_mrsparkle/templates/pages/base.html, we have a <script> tag inserted just before the </body> ta... by joemcmahon Explorer in Getting Data In 10-12-2023 0 2	0	2
parsing logs from logstash at all,I have to parse logs extracted from logstash.I'm receiving logstash logs and they are in json format and almos... by gcusello SplunkTrust in Getting Data In 10-12-2023 1 2	1	2
Syslog I have been tasked with cleaning up the catchall directory in the syslog directory of our Heavy Forwarders. The path ... by SakAch Engager in Getting Data In 10-11-2023 0 1	0	1
We have installed a Universal forwarder on one of our servers, Can we add another instance of Splunk and use it as a deployment server too? We have a server where we have universal forwarder, and I am planning to install a splunk enterprise version so that ... by Tejkumar451 Explorer in Getting Data In 10-10-2023 0 9	0	9
How to filter events from Eventlog? We are using the Splunk Universal Forwarder on Windows servers to capture event viewer logs into Splunk. We have a k... by infra4scc New Member in Getting Data In 10-10-2023 0 1	0	1
Monitor Windows event log via WMI to splunk Hi,Is it possible to monitor Windows event log via WMI to splunk instead of using Universal Forwarder?if yes, how can... by splk_user Path Finder in Getting Data In 10-10-2023 0 6	0	6
2 of my indexer are configured but inactive state is showing . The data is not going to ingest in 2 indexers. Two of my indexer is not working they are not receiving data from Universal forwarder.when i run the command ./splunk... by Hemant93 Loves-to-Learn Lots in Getting Data In 10-10-2023 0 4	0	4
Is splunk-appinspect package broken? I do a local splunk-appinspect on packages before uploading them to Splunk Cloud.Each jenkins run will 'pip install s... by wswongki New Member in Getting Data In 10-09-2023 0 1	0	1
Splunk UF cant forward data to HF Hi,ii had recently install UF v9.0.5 on our windows hosts to send logs to a heavy forwarder, and is getting below mes... by noobSpl888 Engager in Getting Data In 10-09-2023 0 4	0	4