Getting Data In

Community Activity

Trimming Event Logs from a Domain Controller Hi, I need some help in managing some logging to my Splunk server. We have an enterprise-wide set of Domain Control... by kholleran Communicator in Getting Data In 09-11-2012 0 2	0	2
Scripted input question for batch file Hello, I cannot get the value of scripted input by using batch file as wrapper script. My configuration is as below: ... by sieutruc Contributor in Getting Data In 09-11-2012 0 2	0	2
inputs.conf configuration help .. Hi. I have source files in the following folder path : splunkInput/logs/ Files in the path are Managed1.txt Mana... by rakesh_498115 Motivator in Getting Data In 09-10-2012 0 1	0	1
Trying to override a syslog UDP sourcetype based on a host naming convention; not working I've read many threads and tried multiple examples on this and am getting nowhere. first some history on the issue: ... by mjones414 Contributor in Getting Data In 09-10-2012 0 5	0	5
Lookup- subnet matching in csv to autolookup in multiple indexes Hey Guys, I am still figuring out the lookup feature. I have checked the previous question but couldnt get a way out... by _ashwin Engager in Getting Data In 09-10-2012 0 3	0	3
Reading WindowsEvent logs from UNC path Hi, I have some issues with setting up Splunk to read a WindwsEvent file stored on a network share. It seems like th... by AndreasLP Explorer in Getting Data In 09-10-2012 0 7	0	7
iso 27001 27002 report generation how can I generate iso 27001 27002 report ? Thank you ! by perlish Communicator in Getting Data In 09-10-2012 0 3	0	3
Splunk, filter events for some users but discard it if the event contain specific field i have configured transforms.conf like this: [setnull] REGEX = . DEST_KEY = queue FORMAT = nullQueue [setparsing] R... by angelo82 Explorer in Getting Data In 09-10-2012 0 1	0	1
How do I set retention for an index to 30 days? Hi, I am trying to configure retention period for an index. I want to archive (compress) the indexed data after 3 m... by melonman Motivator in Getting Data In 09-09-2012 0 7	0	7
Splunk stop indexing after restart Hi, After I restart splunk, Log files doesn't get indexed. Any idea how can I overcome this issue? I tried, spl... by beyourwish New Member in Getting Data In 09-09-2012 0 1	0	1
how to 'tail' the input that is being sent to indexer Hi Is it possible to tail the log files and send to indexer rather than sending one file as such. To make it clear ... by splunker_123 Path Finder in Getting Data In 09-07-2012 1 7	1	7
enabling rest api access Hi, I have a customer who would like to interact with Splunk, via REST. How do I enable an account to have REST acce... by a212830 Champion in Getting Data In 09-07-2012 0 4	0	4
FilterType=whitelist, blacklisting not working We're trying to exclude a machine from receiving an app through the Deployment server. In the serverclass "Windows In... by mcbradford Contributor in Getting Data In 09-07-2012 0 2	0	2
About Summary Indexing Good day! May i ask you guys a favor can you tell us on how we can use Summary indexing or how to configure it? i ha... by christantoy Path Finder in Getting Data In 09-07-2012 0 6	0	6
Forwarder missing log rotation I have noticed that some forwarders are not sending all of the log files. The log files are rotated hourly and I can ... by romantercero Path Finder in Getting Data In 09-07-2012 0 1	0	1
UDP droppage because of ext4 filesystem: I have been having an issue where one of my 2 log servers have dropping a tremendous amount of UDP packet data (from ... by balbano Contributor in Getting Data In 09-06-2012 2 1	2	1
Sharding an index on shared storage for load balancing Goal: Load balance across two indexers writing to the same location on a NetApp Filer (NFS) 2 IndexersMultiple Forwa... by aholzer Motivator in Getting Data In 09-06-2012 1 6	1	6
rsyslog -> splunk UDP port 515 Hi, I already have a syslog receiver (rsyslogd) that receives ALL syslog messages from our environment. I configured... by jeremymiller New Member in Getting Data In 09-06-2012 0 1	0	1
Is there a limit on the number of files a forwarder can monitor? Is there a limit to the number of files an Universal Forwarder can monitor? When should I install multiple Universa... by glitchcowboy Path Finder in Getting Data In 09-06-2012 1 3	1	3
How to Filter Null Records in Report Hi All, How to Filter Null Records in Report. Please find the Below Search and Report. sourcetype="informatica" Ins... by kiran4splunk New Member in Getting Data In 09-06-2012 0 1	0	1
SNMP Traffic from windows to Splunk Hello Everyone, just after some help with Splunk and Windows SNMP data collection, ive had a bit of a read on here an... by kristiaan_d Explorer in Getting Data In 09-06-2012 0 9	0	9
Log Filtering Performance Metrics or Performance Issues Hi, I have an open question about splunk "log filtering" performance. Is there any document or technical report ment... by jasonchangbompa Explorer in Getting Data In 09-06-2012 0 1	0	1
Filtering application log I am new to this Splunk...I have universal forwarder installed on my two linux machine and successfully forwarding ap... by keshab Path Finder in Getting Data In 09-06-2012 0 3	0	3
WMI:FreeDiskSpace returns information about the CD-ROM drive on the server I am using the following wmi query to gather free disk space info on a Windows 2008 R2 server. The problem I have is ... by usup_rajbahak Path Finder in Getting Data In 09-05-2012 0 3	0	3
Windows app indicates "not set up" after upgrading from 4.0.1 to 4.3.3 After upgrading Splunk from 4.0.1 to 4.3.3 and installing the most recent Windows app, the windows app will first sta... by Rob Splunk Employee in Getting Data In 09-05-2012 1 1	1	1