Getting Data In
Getting Data In
×
Are you a member of the Splunk Community?
Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Discussions
| Thread Info | |||||
|---|---|---|---|---|---|
|
Hi all i am playing with 10 splunk forwarders. I want to add data to splunk forwarder, i am using winscp. But it cann...
by
sumanth_isac
Path Finder
in
Getting Data In
03-18-2013
|
0
|
4
| ||
|
|
Hi
I've an executable script which s triggering fine to run the mash gene to read the alert triggered over audio. ...
by
TheMarkHodgkins
Explorer
in
Getting Data In
03-17-2013
|
0
|
3
| ||
|
|
Hello, We are having some trouble understanding the disk size requirements for storing our data set in Splunk.
The...
by
SunDance
Explorer
in
Getting Data In
03-15-2013
|
1
|
4
| ||
|
|
If I use the regex for extracting product_id from this log it picks only one value of product_id this is the regex i ...
by
dilstn
Explorer
in
Getting Data In
03-18-2013
|
0
|
9
| ||
|
|
Can splunk monitor a log errors.log that exist on another machine without sending the files via ftp/sftp to splunk se...
by
royimad
Builder
in
Getting Data In
03-18-2013
|
0
|
1
| ||
|
|
Hi,
How would I parse a file that has two linebreaking formats? The first is when the line begins and ends with as...
by
a212830
Champion
in
Getting Data In
03-17-2013
|
0
|
3
| ||
|
|
I need to build a dashboard to parse the json data and show it more like Tree Structure.What is the best way, I can b...
by
Sriram
Communicator
in
Getting Data In
03-15-2013
|
1
|
1
| ||
|
|
Hi,
How would I tell splunk to monitor a specific file through a set of subdirectories? Would I set a wildcard in ...
by
a212830
Champion
in
Getting Data In
03-15-2013
|
0
|
1
| ||
|
|
We have several customers with Splunk. Is it possible to integrate more than 1 Splunk instance i ServiceNow?
by
arntm
New Member
in
Getting Data In
03-15-2013
|
0
|
2
| ||
|
|
The Exchange Server application we use, up until last weekend, was reporting data that appears to be an accurate refl...
by
jeffmartintx
New Member
in
Getting Data In
03-14-2013
|
0
|
1
| ||
|
|
We have a universal forwarder on linux that seems to get 'stuck' reading one of the two high event log files being re...
by
twstanley
New Member
in
Getting Data In
10-24-2011
|
0
|
3
| ||
|
|
Unable to start splunk forwarder service, below error returns.
checking mgmt port [8089]: already bound ERROR: The...
by
catch_mili
Explorer
in
Getting Data In
03-14-2013
|
0
|
6
| ||
|
|
I've got an event log from a sql server that I'm trying to import. When I view the file in a text editor, everything ...
by
madmoravian
New Member
in
Getting Data In
03-06-2013
|
0
|
1
| ||
|
|
Hi all,
I have an XML log file that looks something like this.
<matrix>
<datasource>
<name>ABC</name>
...
by
wlsplunker
New Member
in
Getting Data In
03-14-2013
|
0
|
3
| ||
|
|
Hi Everybody,
I am getting the following error message while trying to save remote performance counters for MSMQ s...
by
danurag
Explorer
in
Getting Data In
01-15-2012
|
0
|
3
| ||
|
|
Should a props.conf even exist on universal forwarders? Is all that work (including timestamp and line-breaking) done...
by
a212830
Champion
in
Getting Data In
03-14-2013
|
0
|
2
| ||
|
|
I've been trying to do a search time field extraction, using the EXTRACT-
stanza in props.conf.
From...
by
Adam_Sealey
Explorer
in
Getting Data In
03-14-2013
|
0
|
2
| ||
|
|
i added my Adium chat logs to be monitored by splunk. i see multiple repeats for any given log event. i verified the ...
by
monzy
Communicator
in
Getting Data In
03-11-2013
|
1
|
6
| ||
|
|
Hi all,
I am working on putting my deployment server code in an external location, like GitHub. This part is worki...
by
dcparker
Path Finder
in
Getting Data In
03-14-2013
|
0
|
2
| ||
|
|
I use the following commands on my light forwarders to add an index and set new files to use it. /opt/splunkforwarder...
by
ddholstadz
Explorer
in
Getting Data In
03-22-2011
|
0
|
2
| ||
|
|
Both of my servers are Linux OS and I am using latest Splunk 4.2.
I can forward from UF to Splunk to index, but ev...
by
mehmettecer
Explorer
in
Getting Data In
03-22-2011
|
1
|
5
| ||
|
|
./splunk add monitor col1
what's the col1?
by
dengjin
New Member
in
Getting Data In
03-13-2013
|
0
|
1
| ||
|
|
I am trying to index the local windows eventlogs, but there appears to be an issue reading the "Security" eventlog, a...
by
marcpatron
Explorer
in
Getting Data In
10-30-2012
|
0
|
4
| ||
|
|
Hi all:
I would like to know how do we delete logs from an indexer after 90 days in splunk. Some answers durected ...
by
mike7860
Explorer
in
Getting Data In
03-13-2013
|
1
|
1
| ||
|
|
I have active directory sending logs to my Splunk server via a Universal forwarder. I want to create alerts for when ...
by
jared_anderson
Path Finder
in
Getting Data In
01-10-2013
|
0
|
7
|
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Become An Expert
Top Labels
-
add-on
2 -
administration
11 -
AIX
1 -
audit
1 -
blacklist
90 -
CLI
1 -
configuration
29 -
CSV
205 -
data
443 -
development
5 -
encryption
1 -
eval
2 -
field extraction
537 -
fields
5 -
forwarder
1 -
forwarder management
3 -
heavy
1 -
heavy forwarder
905 -
host
152 -
HTTP Event Collector
422 -
index
531 -
indexer
687 -
indexing performance
1 -
inputs.conf
814 -
installation
4 -
intermediate forwarder
135 -
introduction
3 -
JSON
381 -
kvstore
1 -
Linux
436 -
login
1 -
Mac
30 -
metadata
1 -
metrics
2 -
modular input
182 -
monitor
304 -
monitoring console
1 -
other
28 -
proactive Splunk component monitoring
2 -
props.conf
945 -
regex
5 -
saved search
2 -
scripted input
238 -
search
1 -
search head
2 -
source
284 -
sourcetype
478 -
Splunk Enterprise
1 -
Splunk Investigate
1 -
splunk-assist
2 -
subsearch
1 -
syslog
304 -
time
203 -
transforms.conf
555 -
troubleshooting
15 -
universal forwarder
1,518 -
using Enterprise Security
3 -
using Splunk Cloud
4 -
using Splunk Enterprise
14 -
whitelist
60 -
Windows
573 -
XML
90
- « Previous « Previous
- Next » Next »
Get Updates on the Splunk Community!
ATTENTION!! We’re MOVING (not really)
Hey, all! In an effort to keep this Slack workspace secure and also to make our new members' experience easy, ...
Splunk Admins: Build a Smarter Stack with These Must-See .conf25 Sessions
Whether you're running a complex Splunk deployment or just getting your bearings as a new admin, .conf25 ...
AppDynamics Summer Webinars
This summer, our mighty AppDynamics team is cooking up some delicious content on YouTube Live to satiate your ...
