Getting Data In

Community Activity

How to create a field of stats to string for search in eval? Hi splunkers Why when I do the following query if it gives me the correct data Query \| inputlookup append=t mitre_... by m0rt1f4g0 Explorer in Getting Data In 08-28-2023 0 6	0	6
Why are Armis alerts logs not parsing correctly? hi, The Armis alerts in Splunk Cloud appear to be not being parsed correctly. We do have a technology addon for armis... by AL3Z Builder in Getting Data In 08-28-2023 0 3	0	3
How to ingest excel from UF Hi, I have a excel file on a linux server at a particular path.I have created a input file to monitor this file , but... by Dayalss Engager in Getting Data In 08-28-2023 0 2	0	2
Windows log having special characters when received in HF and Indexer- Air gapped environment Hi there,we have setup splunk in airgapped environment. Windows forwarding log to HF via UF agent port 9997. HF then ... by Aleena Explorer in Getting Data In 08-28-2023 0 0	0	0
Can we setup TLS connection without private key for third party certificates. Hi Team,I would like to establish an SSL/TLS-connection with third party CA certificates between the UFs -> HFs -> in... by VK18 Explorer in Getting Data In 08-28-2023 0 2	0	2
Is there a template for SimData for Threat and Vulnerability Data Generation? Has anyone used SimData for threat and vulnerability data generation? Is there a template available somewhere?Thanks. by dpguru New Member in Getting Data In 08-25-2023 0 0	0	0
Why is parsingQueue Filling Up on UF Despite No Parsing Rules Configured? I know queue backlog troubleshooting questions are very common but I'm stumped here.I have 2 Universal Forwarders for... by SplunkMan96 Engager in Getting Data In 08-25-2023 0 0	0	0
Splunk Add-on for Microsoft Cloud Services Post Upgrade Seeing Some Issues Hi Team,We have 2 Heavy Forwarder servers in our environment (A & B) and in both the HF servers we have installed the... by anandhalagaras1 Contributor in Getting Data In 08-25-2023 0 0	0	0
Splunk Add-on for Microsoft Office 365 Post Upgrade Seeing Some Issues Hi Team,Actually we have 2 HF servers (A & B) in our environment and in both the HF servers we have installed the A... by anandhalagaras1 Contributor in Getting Data In 08-25-2023 0 0	0	0
HEC token data ingestion Can you please let me know what is the max data ingestion limit when we use hec service? by NOORULAINE Loves-to-Learn Lots in Getting Data In 08-25-2023 0 1	0	1
Error Log Flagged: The metric event is not properly structured Hi,I am using Opentelemetry to push Prometheus metrics into Splunk index with metrics data type.After pushing the met... by ericaooi Explorer in Getting Data In 08-25-2023 0 0	0	0
How to send same logs to multiple indexes in different indexers? Hi Everyone,The Requirement is to send same logs to Multiple indexers.Index name at both the indexes should be differ... by jsingh03 Loves-to-Learn in Getting Data In 08-25-2023 0 7	0	7
How to create a job to update CSV file frequently using DBXquery? Hello,How do I create a job to update CSV file frequently using DBXquery?I have a company.csv file that was created b... by LearningGuy Motivator in Getting Data In 08-24-2023 0 5	0	5
Setting up AD Monitor - New to Splunk Hi. I am new to splunk and testing it in lab right now, seeing if it will work for us. Some of the docs are a litt... by smartkid808 New Member in Getting Data In 08-24-2023 0 1	0	1
How to get DB2 and IBM WAS Metrics in Splunk? Hi Community, We are planning to collect data for DB2 and IBM WAS components in our infrastructure. We are expecting ... by Eshwar Engager in Getting Data In 08-24-2023 0 1	0	1
Why is there a Problem parsing indexes.conf and throwing an error? Hi, i restall the splunkThen i copied the old /splunk/var/ to the new /opt/splunk/But when i start splunk,i met this ... by perlish Communicator in Getting Data In 08-24-2023 1 8	1	8
Source or Sourcetype override I have sourcetype based definition in which I mentioned INDEXED_EXTRACTION=JSON. Under this sourcetype there are 10 s... by nags Engager in Getting Data In 08-24-2023 0 3	0	3
Splunk Assistance: How to create dashboards in Splunk? I am a student at Embry-Riddle Aeronautical University and i am attending MISA 532 Intgd Threat Warning Attk EIS. Our... by SplunkDummy33 New Member in Getting Data In 08-23-2023 0 1	0	1
How to install local app via rest API? Hi All, trying to install an app I have locally via API. I have tried both curl command and python script Curl Comman... by kenchansan New Member in Getting Data In 08-23-2023 0 1	0	1
How to route in two directions with restrictions on one? Hi,Here is a challenge that works partly as expected.On a HF I need to split syslog data to two different instances, ... by BDein Explorer in Getting Data In 08-23-2023 0 1	0	1
How to add custom metadata to all events of a file through HEC? Hello all, We are sending some JSON files using HEC (raw endpoint), where a file contains some metadata at the beginn... by diego Loves-to-Learn Lots in Getting Data In 08-23-2023 0 4	0	4
How to do Firewall log summarization before indexing? Hello, In our environment we are dealing with hundreds of GB/day of logs coming from Firewalls. Despite having alread... by edoardo_vicendo Builder in Getting Data In 08-23-2023 0 9	0	9
REX Field Extraction Help Hello!I'm working on a Rex Expression for my job, and wanted to ask for some assistance in developing it. I'm suppose... by TorbinIT Path Finder in Getting Data In 08-23-2023 0 3	0	3
How to recreate partial index data with metadata on different Splunk installation? I have a Splunk container for development (Dev). I want to import a slice of data from one index of my production Sp... by deepdive100 Loves-to-Learn Everything in Getting Data In 08-23-2023 0 2	0	2
How to track file modification on a Linux server as an Alert? Dear Community,I have 2 question.First one i have index=linux and some computers. I want to track file modifications ... by 10061987 Engager in Getting Data In 08-23-2023 0 5	0	5