Getting Data In

Community Activity

Heavy Forwarder configure to populate data to two separate indexes We are running a heavy forwarder. We want to send the perfmon data that it is currently receiving to two separate in... by mookiie2005 Communicator in Getting Data In 07-11-2013 0 8	0	8
Problem with Splunk App upload Hello together I've been trying for hours to upload a new Splunk App on Splunkbase. Unfortunately this does not work... by simony Path Finder in Getting Data In 07-11-2013 0 4	0	4
How to audit REST api initiated searches? I'm looking to audit REST API search activity and I'm unable to locate any logging of REST API initiated searches. I... by the_wolverine Champion in Getting Data In 07-10-2013 0 2	0	2
Scheduler not running? I am simply lost as to what is going on here. My splunk scheduler seems to have just stopped running. Restarting th... by bfeinberg Engager in Getting Data In 07-10-2013 1 3	1	3
Splunk Newbie I am far from being an advanced user of splunk and as a result have a question that I would imagine would be quite si... by MichaelBernas New Member in Getting Data In 07-10-2013 0 3	0	3
Too many source files listed I noticed that we have > 2200 sources listed (and growing) and researching the matter seems to indicate that I can us... by RVDowning Contributor in Getting Data In 07-10-2013 0 3	0	3
Forwarders hosts are also being displayed as consumed data Hi I have used the following query to find indexer host wise mb consumed in indexeing. index=_internal source=*me... by rakesh_498115 Motivator in Getting Data In 07-10-2013 0 3	0	3
Average Time over two Timestamps I am trying to get the average Session duration by USER_ID, but a single USER_ID can have multiple SESSION_ID. The S... by JoeSco27 Communicator in Getting Data In 07-10-2013 0 4	0	4
How to enable WMI data collection on a Domain Server Hi, I've a problem with the WMI privilege on a Domain Controller running Win 2003 R2. This is what I done: Add user ... by pmelchiori Explorer in Getting Data In 07-10-2013 1 20	1	20
Unable to extract timestamp from a CSV file Hi All, I'm trying to extract some reports form a sample csv file. the first two lines are: BOT_ID,TECHNOLO... by abhishek5282 Engager in Getting Data In 07-10-2013 1 5	1	5
Monitoring an entire folder with yesterday flagged files Hello Splunk Experts, I have a folder that i need to monitored entirely: the folder contains a list that is represen... by royimad Builder in Getting Data In 07-10-2013 0 4	0	4
HadoopConnect: How do I reset the HDFS input? I have a folder in HDFS that has log files continuously being put into it. I decided to test the HadoopConnect app's ... by jonahtang Explorer in Getting Data In 07-09-2013 0 1	0	1
Cannot open or write to file from custom controller I've been experimenting with creating a custom controller for an splunk webapp we're working on. Ultimately, we want ... by DaleFRice Explorer in Getting Data In 07-09-2013 0 1	0	1
Minimal capabilities required for adding events via Splunk REST API Hi, I'm trying to add events into an existing index, via the REST API (specifically, using javascript-sdk). Everyth... by yitzarad Path Finder in Getting Data In 07-09-2013 0 3	0	3
Powershell Scripts for Splunk for Cisco UCS not working Hi everyone, I'm currently testing out the Splunk App for Cisco UCS on Splunkbase (http://splunk-base.splunk.com/a... by BenjaminWyatt Communicator in Getting Data In 07-09-2013 1 9	1	9
Limit Memory used by forwarder on Domain Controller All of our Domain Controllers are VMs with limited resources. We have the UF running on them, catching Windows Event... by wbfoxii Communicator in Getting Data In 07-09-2013 2 9	2	9
Whitelisting/Blacklisting files inside tgz files I have a bunch of .tgz files that are being regularly uploaded to a directory and I'd like to only index a subset of ... by wdhathaway Explorer in Getting Data In 07-08-2013 1 4	1	4
Extracting event date from file path hello all, I have a set of log files being created in a directory structure as: /data/hostname/year/month/day/logfil... by swdonline Path Finder in Getting Data In 07-08-2013 0 4	0	4
discard not needed events Hi, I am new to splunk, I only want to forward specific events to splunk (for example: failures)and discard the rest.... by Clovens New Member in Getting Data In 07-08-2013 0 3	0	3
How do I get unique values in form dropdown? I want the list in the dropdown to be unique values in a form. What do I have to put in the 'populatingSearch' eleme... by oriches Explorer in Getting Data In 07-08-2013 0 3	0	3
how do I remove a source Ok, this is massively frustrating. I downloaded Splunk and installed it on my computer. I ran through the tutorials j... by juriggs Path Finder in Getting Data In 07-08-2013 2 3	2	3
can I pass additional source info from inputs.conf Is it possible to pass extra info from inputs.conf? e.g. [inputs.conf] [default] host = my_host [monitor://somepat... by jangid Builder in Getting Data In 07-08-2013 0 3	0	3
More than one inputs.conf / config directory Hello fellow splunkers, I know about $SPLUNK_HOME/etc/system/local/inputs.conf and using wildcards to minimize the a... by Comradin Engager in Getting Data In 07-08-2013 1 2	1	2
Howto remove sources to not show up on the summary page anymore We are running Splunk version 5.0.1, build 143156. We mistakenly indexed thousands of log files with each file havin... by bshamsian Path Finder in Getting Data In 07-05-2013 0 3	0	3
Anyone using Meraki Presence API to send AP stats to Splunk REST API? Meraki cloud controller allows you to configure a secret and POST URL (to your server) in order to send JSON post fil... by bwindham Path Finder in Getting Data In 07-05-2013 1 1	1	1