Getting Data In

Community Activity

BSM Scripted input help I downloaded an app that does exactly what I need to collect BSM audit logs, however it is for version 3.x. I thought... by FrozenGrapes New Member in Getting Data In 05-27-2014 0 3	0	3
Easy way to adjust the check in interval for various real time inputs like perfmon? Is there an accepted way to adjust the interval of certain stanzas remotely and on the fly? Say, I want to casually ... by neiljpeterson Communicator in Getting Data In 05-27-2014 0 1	0	1
Trying to pull data from IPS using SDEE How to pull data from Cisco IPS into Splunk. I tried using SDEE pool query but it did not work. Any help on this wo... by vhallan_splunk Splunk Employee in Getting Data In 05-27-2014 0 3	0	3
route data to different index based on two fields For the below data, I want to route indexes based on two fields : EventType and Department. All departments have sepa... by kittu26 New Member in Getting Data In 05-26-2014 0 1	0	1
Issue filtering events from windows secutiry log going into indexer I am having difficulty filtering the Windows security logs. I have attempted to restrict the event IDs being sent but... by briandickinson New Member in Getting Data In 05-25-2014 0 1	0	1
Configurations that Filters Existing Orders from AS/400 File I'm looking to come up with some configurations that filter out existing orders from files I (currently) manually cop... by _gkollias Builder in Getting Data In 05-23-2014 0 2	0	2
Help with configuring exclusions for certain errors. My Goal is to exclude everything I already am for all servers, but only exclude EventIdentifier -2147482339 for two s... by Tellon New Member in Getting Data In 05-23-2014 0 1	0	1
Directory monitoring Is it possible to monitor a directory with Splunk? When I say monitor a directory I am not interested in the contents... by DonDandrea Path Finder in Getting Data In 05-23-2014 0 1	0	1
Logging Wireless access points I'm looking to index the Wireless access points into Splunk. I was looking for help to understand what we need to loo... by Kishorebk New Member in Getting Data In 05-23-2014 0 1	0	1
SplunkForwarder Version on Windows Quick question here. We have the SplunkForwarder installed on a couple of Windows servers and need to know what vers... by OldManEd Builder in Getting Data In 05-22-2014 0 9	0	9
squid log format slightly changed- would it cause my problem? I am running squid 3.1 with an almost stock logformat (I modified it to show the fully qualified name of the IP addre... by ericsteed Engager in Getting Data In 05-22-2014 0 1	0	1
Login to resource from Universal Forwarder? Hello, I am trying to get logs sent from a firewall to a Universal Forwarder. To get logs from the Firewall, I need t... by lbogle Contributor in Getting Data In 05-22-2014 0 4	0	4
nullqueue not working This seems pretty straight forward, but its not working for me. In the indexer/search head. Ive set the following t... by Cuyose Builder in Getting Data In 05-22-2014 0 7	0	7
splunk installation error I uninstalled Splunk and install it again, the system displayed an error as follow. Splunk install was unable to cre... by victor1219 New Member in Getting Data In 05-22-2014 0 1	0	1
When to add indexer/forwarder Hello Splunkers, I came across a page that answered this once but I can't seem to find it again... For best practices... by lbogle Contributor in Getting Data In 05-22-2014 0 3	0	3
Splunk Forwarder Crashes - pthread_create: Resource temporarily unavailable Our lightweight forwarder has experienced several crashes within the last 5 days... here's what's in the crash log. T... by sephora_it Explorer in Getting Data In 05-22-2014 0 1	0	1
Splunk and CRM Systems Can splunk connect to CRM systems? and how? by islamsedtolan New Member in Getting Data In 05-22-2014 0 1	0	1
Problem in displaying timestmap Hi , There is a requirement to change the time format from "04/04/14 13:11:37" to "Mon April 04 2014 13:11:37" .I tr... by Jananee_iNautix Path Finder in Getting Data In 05-22-2014 0 3	0	3
Discard events on forwarder/Indexer which includes specific tags in Logs Hi I want to discard log lines which includes specific tag "reversed position attributes " in log file. We want to... by nikhilagrawal Path Finder in Getting Data In 05-21-2014 0 5	0	5
multiple searches in one graph Hi, I need to create a graph that contains 2 searches, to compare today's search and last week's search I know there ... by nirt Path Finder in Getting Data In 05-21-2014 1 5	1	5
Load File At Same Time Everyday Regardless Of Changes Just as it states. Is there way to monitor a file and reload it everyday even if it has not changed? Only once per da... by andrewkenth Communicator in Getting Data In 05-21-2014 0 3	0	3
Running 6.1.1 Searchhead with 6.0 Indexers Aside from the new internal index, are there any issues running a 6.1.1 searchhead with 6.0 indexers? I am trying to... by jodros Builder in Getting Data In 05-21-2014 1 7	1	7
Pull data from a script(sh or py) to show in Splunk without indexing Hi, I need a command like dbquery(dbconnect) which when executed in Splunk searh returns data from a script's output... by sibbsnb Path Finder in Getting Data In 05-21-2014 0 2	0	2
Send all Logmessages witch contain DEBUG to /dev/null on splunkforwarder-6.0.3-204106-AIX-powerpc Cant get DEBUG messages filtered out at all on splunkforwarder. Did create $SPLUNKHOME/etc/system/local/transforms.c... by pit4getit Explorer in Getting Data In 05-21-2014 0 2	0	2
Windows events log monitoring I need to monitor the windows event logs using the universal forwarder. Please help me out for the below queries:- H... by RashmiGowda Explorer in Getting Data In 05-21-2014 0 1	0	1