Getting Data In

Community Activity

How do I define a stanza that applies to all stanzas in the same inputs.conf file? I could have sworn it was [] but that did not seem to work, nor did [*] I do not want to use [default] because I don... by neiljpeterson Communicator in Getting Data In 05-27-2014 0 2	0	2
Phantom sourcetypes being reported against license volume In my license usage reports its showing a couple sourcetypes that are taking a lot of indexing volume, however they a... by Cuyose Builder in Getting Data In 05-27-2014 0 4	0	4
Is there any meta data that identifies when a splunk agent was first installed? I am going through an audit, and I will need to identify when a splunk agent was installed on a system. The systems c... by lisaac Path Finder in Getting Data In 05-27-2014 0 2	0	2
Error 1073741795 installing Universal Forwarder Hello all, I am trying to install a splunk forwarder on a server 2003 x86 domain controller. I am installing with a ... by rush2112 New Member in Getting Data In 05-27-2014 0 3	0	3
Splunk_CiscoIPS app does not work (or partial working) Hi splunkers, i have a problem with CiscoIPS application. i cant collect logs. the connection is but the logs not. S... by blebit Path Finder in Getting Data In 05-27-2014 0 2	0	2
BSM Scripted input help I downloaded an app that does exactly what I need to collect BSM audit logs, however it is for version 3.x. I thought... by FrozenGrapes New Member in Getting Data In 05-27-2014 0 3	0	3
Easy way to adjust the check in interval for various real time inputs like perfmon? Is there an accepted way to adjust the interval of certain stanzas remotely and on the fly? Say, I want to casually ... by neiljpeterson Communicator in Getting Data In 05-27-2014 0 1	0	1
Trying to pull data from IPS using SDEE How to pull data from Cisco IPS into Splunk. I tried using SDEE pool query but it did not work. Any help on this wo... by vhallan_splunk Splunk Employee in Getting Data In 05-27-2014 0 3	0	3
route data to different index based on two fields For the below data, I want to route indexes based on two fields : EventType and Department. All departments have sepa... by kittu26 New Member in Getting Data In 05-26-2014 0 1	0	1
Issue filtering events from windows secutiry log going into indexer I am having difficulty filtering the Windows security logs. I have attempted to restrict the event IDs being sent but... by briandickinson New Member in Getting Data In 05-25-2014 0 1	0	1
Configurations that Filters Existing Orders from AS/400 File I'm looking to come up with some configurations that filter out existing orders from files I (currently) manually cop... by _gkollias Builder in Getting Data In 05-23-2014 0 2	0	2
Help with configuring exclusions for certain errors. My Goal is to exclude everything I already am for all servers, but only exclude EventIdentifier -2147482339 for two s... by Tellon New Member in Getting Data In 05-23-2014 0 1	0	1
Directory monitoring Is it possible to monitor a directory with Splunk? When I say monitor a directory I am not interested in the contents... by DonDandrea Path Finder in Getting Data In 05-23-2014 0 1	0	1
Logging Wireless access points I'm looking to index the Wireless access points into Splunk. I was looking for help to understand what we need to loo... by Kishorebk New Member in Getting Data In 05-23-2014 0 1	0	1
SplunkForwarder Version on Windows Quick question here. We have the SplunkForwarder installed on a couple of Windows servers and need to know what vers... by OldManEd Builder in Getting Data In 05-22-2014 0 9	0	9
squid log format slightly changed- would it cause my problem? I am running squid 3.1 with an almost stock logformat (I modified it to show the fully qualified name of the IP addre... by ericsteed Engager in Getting Data In 05-22-2014 0 1	0	1
Login to resource from Universal Forwarder? Hello, I am trying to get logs sent from a firewall to a Universal Forwarder. To get logs from the Firewall, I need t... by lbogle Contributor in Getting Data In 05-22-2014 0 4	0	4
nullqueue not working This seems pretty straight forward, but its not working for me. In the indexer/search head. Ive set the following t... by Cuyose Builder in Getting Data In 05-22-2014 0 7	0	7
splunk installation error I uninstalled Splunk and install it again, the system displayed an error as follow. Splunk install was unable to cre... by victor1219 New Member in Getting Data In 05-22-2014 0 1	0	1
When to add indexer/forwarder Hello Splunkers, I came across a page that answered this once but I can't seem to find it again... For best practices... by lbogle Contributor in Getting Data In 05-22-2014 0 3	0	3
Splunk Forwarder Crashes - pthread_create: Resource temporarily unavailable Our lightweight forwarder has experienced several crashes within the last 5 days... here's what's in the crash log. T... by sephora_it Explorer in Getting Data In 05-22-2014 0 1	0	1
Splunk and CRM Systems Can splunk connect to CRM systems? and how? by islamsedtolan New Member in Getting Data In 05-22-2014 0 1	0	1
Problem in displaying timestmap Hi , There is a requirement to change the time format from "04/04/14 13:11:37" to "Mon April 04 2014 13:11:37" .I tr... by Jananee_iNautix Path Finder in Getting Data In 05-22-2014 0 3	0	3
Discard events on forwarder/Indexer which includes specific tags in Logs Hi I want to discard log lines which includes specific tag "reversed position attributes " in log file. We want to... by nikhilagrawal Path Finder in Getting Data In 05-21-2014 0 5	0	5
multiple searches in one graph Hi, I need to create a graph that contains 2 searches, to compare today's search and last week's search I know there ... by nirt Path Finder in Getting Data In 05-21-2014 1 5	1	5