Getting Data In

Thread Info

splunkd.exe environment variables SPLUNK_HOME PYTHONPATH etc

Hi I installed Splunk on my laptop (Windows 7 64 bit) and things worked fine . I stopped the Windows service and was ...

by New Member in

WindowsUpdateLog

Hi, I have Splunk for Windows installed and want to check the WindowsUpdate log. I am receiving the log correctly and...

by Path Finder in

Assign sequential timestamps to data on data load

I tried loading a textfile (via "splunk add oneshot datafile.txt") containing just IP addresses into Splunk v5.0, and...

by Path Finder in

Multiple transforms on one data source

I am working with CSV files. When they come in, the first row contains a version header which I want to get rid of. T...

by Builder in

To create a field from the csv data

Hi Xperts, I Need to create a field which displays hostnames with the following data, 1 1568 *NAIT US ICC...

by Explorer in

Python script with Universal forwarder

Here is my script from urllib2 import sys, Request, urlopen, URLError, HTTPError if len(sys.argv) <= 1: sys.exit...

by Builder in

Time out error encountered for connection from host

Hi, I have encountered errors from a host that is sending data to the splunk server(running on linux) via port 999...

by Contributor in

異なるsourcetypeから同じ名前のfieldをかけあわせる方法について

異なるソースタイプ[sourcteype=A][sourcetype=B]の中に、それぞれ[field=zzz]という同じ名前のフィールドがあります。これをサーチで1つにかけあわせて検索する方法で[join]というものを使って下記の...

by Contributor in

Syslog Level :Emerg - system is unusable

Hi all, so i have been trying to set up the Home Monitor app and for a while nothing was being indexed so I i had a l...

by Engager in

Websphere log monitoring, missing events

I am trying to set up monitoring of Websphere logs, they are accessed from a Windows fileshare using CIFS from our li...

by Explorer in

Forwarder doesn't show in list of forwarders

The situation: - Our storage is full and the last time data received is a couple of months ago. - I'm new here and ot...

by New Member in

Unable to execute gcc-4.2 No such file or directory when adding MySQLdb Module

Trying to add the MySQLdb Module to my Splunk Python for Splunk scripted inputs from a db. It is complaining about gc...

by Splunk Employee in

Splunk encountered the following unknown module "Windows_FTR" The view may not load properly

Hi, I am running a test to upgrade our splunk server from 4.3.2 to 5.....in my testbed environment which is set u...

by Engager in

Indexing evt files in a distributed environment

All, Just a quick query on monitoring exported evt files... We are looking to use linux for our Indexers, howe...

by Influencer in

log4j format log files and timezone setting not working

revised as requested for better background information Hi I have a newb time zone question. What have I configu...

by Explorer in

Snort for Splunk via rsyslog

I have a central syslog server forwarding snort alerts to my Splunk system via rsyslog. These snort alerts are curren...

by New Member in

PdhCollectQueryData failed ?

on behalf of omlojoha from the forums: In the splunkd.log I see the following message: 06-11-2010 16:30:54.424 ...

by Splunk Employee in

Is it possible to index XML files in a structured manner?

Is it possible to index XML files in a structured manner and if so how?

by Splunk Employee in

Reg: REST API to change deployment app configuration of Deployment server

Hi Does anybody know REST APi curl command to change the Deployment app inputs.conf of a splunk Deployment Server....

by Explorer in

Splunk Group Events By timestamp

Hi, I have this log file mixed with a single and multiple line events, my problem is that splunk is breaking some...

by Explorer in

Add data to Splunk from a form

Hi guys. With bpdbjobs from Netbackup i got a list of all my netbackup jobs yhich are completed. Some of then have a ...

by Communicator in

props.conf event breaks

Hello, We have the following format of a log starting with the first message in the log as Status_AdvCorrServerSer...

by Splunk Employee in

Route Syslogs coming from certain hosts into a separate index

I've been attempting to route Syslog messages, coming from certain hosts, to a separate index with no success. Below ...

by New Member in

Extracting XML data attributes from message field

I have XML data stored for an field in my Splunk events and am looking to extract an attribute contained within one o...

by Path Finder in

Key Value Pairs with Spaces

A developer made a change to the logging that they were managing. They added a new Key Value Pair and the results now...

by Path Finder in

Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

Getting Data In

Discussions

splunkd.exe environment variables SPLUNK_HOME PYTHONPATH etc

WindowsUpdateLog

Assign sequential timestamps to data on data load

Multiple transforms on one data source

To create a field from the csv data

Python script with Universal forwarder

Time out error encountered for connection from host

異なるsourcetypeから同じ名前のfieldをかけあわせる方法について

Syslog Level :Emerg - system is unusable

Websphere log monitoring, missing events

Forwarder doesn't show in list of forwarders

Unable to execute gcc-4.2 No such file or directory when adding MySQLdb Module

Splunk encountered the following unknown module "Windows_FTR" The view may not load properly

Indexing evt files in a distributed environment

log4j format log files and timezone setting not working

Snort for Splunk via rsyslog

PdhCollectQueryData failed ?

Is it possible to index XML files in a structured manner?

Reg: REST API to change deployment app configuration of Deployment server

Splunk Group Events By timestamp

Add data to Splunk from a form

props.conf event breaks

Route Syslogs coming from certain hosts into a separate index

Extracting XML data attributes from message field

Key Value Pairs with Spaces

Aligning Observability Costs with Business Value: Practical Strategies

Mastering Data Pipelines: Unlocking Value with Splunk

Splunk Up Your Game: Why It's Time to Embrace Python 3.9+ and OpenSSL 3.0

Splunk Answers Content Calendar May 2025 🎉

Solaris UFs have different build hash than others

Edge Processor Destination not showing up in Pipel...

ERROR: Tor IP are not updating in lookup

How to integrate SentinelOne Singularity Enterpris...

Getting Data In

Are you a member of the Splunk Community?

Discussions