Getting Data In

Community Activity

Divide a Result By Two The following search I'm running is giving me duplicate results for each event: (host="zakta-test.inno-360.com") AND... by henryt1 Path Finder in Getting Data In 02-27-2014 1 5	1	5
splunk for cisco router running 6.0.1. currently capturing syslog from sonicwall firewall. do I need a cisco add-on to capture cisco syslog... by rborman81 New Member in Getting Data In 02-27-2014 0 2	0	2
Security Windows Event Logs not collected by the UF on Windows 2008 and Windows 2012 - Splunk 6 Hi all, I need your help regarding SDDL (Security Descriptor Definition Language) configurations for setting the righ... by mgaraventa_splu Splunk Employee in Getting Data In 02-27-2014 3 5	3	5
Extracting fields from JSON file format Hi, I want to extract the fields from JSON File format and after extrating the fileds. I want to remove one of the va... by abhayneilam Contributor in Getting Data In 02-27-2014 0 6	0	6
Powershell Scripting for SPLUNK Hi, I have installed Splunk in my windows machine and I want to give the scripted input to Splunk. I know Splunk do... by abhayneilam Contributor in Getting Data In 02-26-2014 1 6	1	6
Universal Forwarder install- can't browse log file location I'm trying to install "splunkforwarder-6.0-182611-x64-release" on a Windows 2008 R2 server. While going through the i... by Bill_B Communicator in Getting Data In 02-26-2014 0 4	0	4
Time Stamp i(All time vs 15 min) When I do a search on my search head for all time, I see correct time stamps in standard EST. When I do a 15 minute s... by tmarlette Motivator in Getting Data In 02-26-2014 0 12	0	12
Splunk not recording events on hosts Hello, I am running the free version of Splunk for syslog (v 5.0.3) and after a server reboot last week, it is no lo... by pfcnetwork New Member in Getting Data In 02-26-2014 0 16	0	16
windows splunk forwarder not sending data My Server monitors 4 0ut of 5 The one below does not get monitored: C:\Windows\System32\LogFiles\HTTPERR\httperr1.lo... by muhammad4 Explorer in Getting Data In 02-26-2014 1 2	1	2
Iterate the extraction of json objects using Splunk query language Is there an example that shows how to iterate the extraction of json objects using Splunk query language? The spath ... by lpolo Motivator in Getting Data In 02-26-2014 0 5	0	5
Setting heavy forwarder for sending only few events which matched with Regx I am setting up heavy forwarder on multiple machine, out of that one of them have below requirement, 1) Heavy forwa... by moohkhol New Member in Getting Data In 02-26-2014 0 6	0	6
Universal Forwarder Installation- Error: No logon servers are available to service the logon request. I'm trying to install "splunkforwarder-6.0-182611-x64-release" on a Windows 2008 R2 server. While going through the i... by Bill_B Communicator in Getting Data In 02-25-2014 0 3	0	3
Universal Forwarder Error during install Hi, I'm trying to install "splunkforwarder-6.0-182611-x64-release" on a Windows 2008 R2 server. While going through t... by Bill_B Communicator in Getting Data In 02-25-2014 0 3	0	3
Question about timestamp formatting I have this is a search: ... \|eval phaseD_time=if(searchmatch("SERVICE_INSTANCE,MESSAGE_RECEIVED,SERVICE_REQUEST"), _... by gartnerj Explorer in Getting Data In 02-25-2014 0 3	0	3
fsck messages Hi, I am seeing a lot of "ProcessTracker - (child_56__Fsck) Fsck - Rebuild --bloom-only bucket /apps/splunk/splunk/... by a212830 Champion in Getting Data In 02-25-2014 1 1	1	1
.bash_history on NFS-mounted home directory Hi. We would like to index users' shell history (.bash_ history) in Splunk. The issue is that we have shared home di... by Branden Builder in Getting Data In 02-24-2014 1 1	1	1
Removing Garbled logs by linecount before indexing Hey everyone, So I have a script that generates status logs for a few network devices that my Splunk forwarder grabs,... by twistedsixty4 Path Finder in Getting Data In 02-24-2014 0 3	0	3
ExecProcessor appends "-index main" to end of scripted input command-line I've got a scripted input being called like so (inputs.conf): [script://./bin/GetFaults.path] source = ciscoucs:py:C... by halr9000 Motivator in Getting Data In 02-24-2014 2 6	2	6
splunk-perfmon.exe exited with code -1 Hello, I am trying to find out why I receive "ExecProcessor - Ran script: "$SPLUNK_HOME\bin\splunk-perfmon.exe" -ind... by bmacias84 Champion in Getting Data In 02-24-2014 0 2	0	2
Tricky parsing requirement Say I fed a file into splunk that had a date field at the top. Then after that, one event per line that contained a ... by ssledzie New Member in Getting Data In 02-24-2014 0 6	0	6
Splunk DB Connect and reverse proxy Running Splunk (in trial mode) behind a reverse proxy (wiki.splunk.com/Community:SplunkBehindAProxy) and have a probl... by kenmcgarrahan Explorer in Getting Data In 02-24-2014 0 3	0	3
Real-Time Output and Splunk6 I did a fresh install of Splunk 6 and then installed Real-Time Output. I find that the Output Assistant doesn't save... by jenaugle Explorer in Getting Data In 02-23-2014 2 1	2	1
host_regex vs tranforms. Hi, I am processing lots of syslog messages via rsyslog. The messages get routed to logfiles, which have the format... by a212830 Champion in Getting Data In 02-22-2014 0 2	0	2
Figure out when a log entry was sent from a forwarder? We're having an issue where a log entry isn't being indexed by the indexer until several hours after the log entry wa... by hajducko Explorer in Getting Data In 02-21-2014 0 3	0	3
WMI filter doesn't work I have installed the heavy forwarder on a windows machine in order to filter Windows Event Log events . I would like ... by alain_bettiol New Member in Getting Data In 02-21-2014 0 3	0	3