Getting Data In

Community Activity

splunk wont recognize apache access logs I tried to force the sourcetype to access_combined. Even then i do not see the field extractions related to apache lo... by tven7 Path Finder in Getting Data In 07-12-2013 0 3	0	3
Timestamp hour without leading zero I have a problem regarding the time stamp recognition in one of my log types. The one affected is a checkpoint export... by FRoth Contributor in Getting Data In 07-12-2013 2 11	2	11
Discard Windows Events and keep the rest Hi, Had installed splunk on serverA and serverB and configured both as a forwarder to forward wineventlogs to splunk... by apro Path Finder in Getting Data In 07-12-2013 0 3	0	3
Can I optimise search by increasing hot buckets? Three questions in one. Are hot buckets faster than warm for search. If so is it because they are in memory or bec... by BobM Builder in Getting Data In 07-12-2013 1 2	1	2
Filter according folders of the source filed Hi, I would like to have the option to filter according the sub folders of the source. For example: If my source is:... by avitallange Explorer in Getting Data In 07-11-2013 0 1	0	1
How do I receive events whenever someone plugs/unplugs a USB device? What data can Splunk gather that shows if a USB is being used on a (Windows) desktop. Is that data we can collect via... by Dan Splunk Employee in Getting Data In 07-11-2013 4 3	4	3
Exclude CSV Header from monitoring and being indexed I'm monitoring files from a local directory on splunk , those files are CSV's files with a header that describe each ... by royimad Builder in Getting Data In 07-11-2013 0 1	0	1
Heavy Forwarder configure to populate data to two separate indexes We are running a heavy forwarder. We want to send the perfmon data that it is currently receiving to two separate in... by mookiie2005 Communicator in Getting Data In 07-11-2013 0 8	0	8
Problem with Splunk App upload Hello together I've been trying for hours to upload a new Splunk App on Splunkbase. Unfortunately this does not work... by simony Path Finder in Getting Data In 07-11-2013 0 4	0	4
How to audit REST api initiated searches? I'm looking to audit REST API search activity and I'm unable to locate any logging of REST API initiated searches. I... by the_wolverine Champion in Getting Data In 07-10-2013 0 2	0	2
Scheduler not running? I am simply lost as to what is going on here. My splunk scheduler seems to have just stopped running. Restarting th... by bfeinberg Engager in Getting Data In 07-10-2013 1 3	1	3
Splunk Newbie I am far from being an advanced user of splunk and as a result have a question that I would imagine would be quite si... by MichaelBernas New Member in Getting Data In 07-10-2013 0 3	0	3
Too many source files listed I noticed that we have > 2200 sources listed (and growing) and researching the matter seems to indicate that I can us... by RVDowning Contributor in Getting Data In 07-10-2013 0 3	0	3
Forwarders hosts are also being displayed as consumed data Hi I have used the following query to find indexer host wise mb consumed in indexeing. index=_internal source=*me... by rakesh_498115 Motivator in Getting Data In 07-10-2013 0 3	0	3
Average Time over two Timestamps I am trying to get the average Session duration by USER_ID, but a single USER_ID can have multiple SESSION_ID. The S... by JoeSco27 Communicator in Getting Data In 07-10-2013 0 4	0	4
How to enable WMI data collection on a Domain Server Hi, I've a problem with the WMI privilege on a Domain Controller running Win 2003 R2. This is what I done: Add user ... by pmelchiori Explorer in Getting Data In 07-10-2013 1 20	1	20
Unable to extract timestamp from a CSV file Hi All, I'm trying to extract some reports form a sample csv file. the first two lines are: BOT_ID,TECHNOLO... by abhishek5282 Engager in Getting Data In 07-10-2013 1 5	1	5
Monitoring an entire folder with yesterday flagged files Hello Splunk Experts, I have a folder that i need to monitored entirely: the folder contains a list that is represen... by royimad Builder in Getting Data In 07-10-2013 0 4	0	4
HadoopConnect: How do I reset the HDFS input? I have a folder in HDFS that has log files continuously being put into it. I decided to test the HadoopConnect app's ... by jonahtang Explorer in Getting Data In 07-09-2013 0 1	0	1
Cannot open or write to file from custom controller I've been experimenting with creating a custom controller for an splunk webapp we're working on. Ultimately, we want ... by DaleFRice Explorer in Getting Data In 07-09-2013 0 1	0	1
Minimal capabilities required for adding events via Splunk REST API Hi, I'm trying to add events into an existing index, via the REST API (specifically, using javascript-sdk). Everyth... by yitzarad Path Finder in Getting Data In 07-09-2013 0 3	0	3
Powershell Scripts for Splunk for Cisco UCS not working Hi everyone, I'm currently testing out the Splunk App for Cisco UCS on Splunkbase (http://splunk-base.splunk.com/a... by BenjaminWyatt Communicator in Getting Data In 07-09-2013 1 9	1	9
Limit Memory used by forwarder on Domain Controller All of our Domain Controllers are VMs with limited resources. We have the UF running on them, catching Windows Event... by wbfoxii Communicator in Getting Data In 07-09-2013 2 9	2	9
Whitelisting/Blacklisting files inside tgz files I have a bunch of .tgz files that are being regularly uploaded to a directory and I'd like to only index a subset of ... by wdhathaway Explorer in Getting Data In 07-08-2013 1 4	1	4
Extracting event date from file path hello all, I have a set of log files being created in a directory structure as: /data/hostname/year/month/day/logfil... by swdonline Path Finder in Getting Data In 07-08-2013 0 4	0	4