Getting Data In

Thread Info

Importing the Splunk MIB to CA Spectrum 9.2

Hi Has anyone successfully imported the Splunk MIB ino CA Spectrum 9.2 ? when we try Spectrum gives the following ...

by Explorer in

Kiwi and Splunk

Hi guys, I've tried several transformations and even field extractor but I can't get Splunk to extract the hostnam...

by New Member in

Dealing with a few million little log files

We're looking to use Splunk to index our application logs; But the application creates a separate log file for each p...

by Explorer in

wmi data through forwarder

How to configure WMI in my remote machine 64 bit. need to get wmi data from remote machine to splunk server through s...

by Path Finder in

Splunk automatically breaking log entries after 100 lines.

I am trying out Splunk and facing an issue. I have some large log entries in my log file, say 250 lines and I have de...

by Engager in

is crcSalt deprecated?

I'm running Splunk 4.3.1 build 119532. I'm getting errors at startup saying that the crcSalt = line in props.conf ma...

by Builder in

Time comparsion in search

I have 2 fields, start_time and end_time in the search result. When I change the time window in the search bar, it on...

by Builder in

forwarder configs

the universal forwarder was installed on a server to send info to splunk. We don't see any traffic coming from the fo...

by New Member in

Load balancing and queuing

Hello there, I'm deploying a Splunk environment with two forwarders and two indexers. I've got a primary indexer a...

by Communicator in

Location of "Remote performance monitoring" configs

Where are the conf files that handle setting up Remote performance monitoring? I would like to take the settings that...

by Path Finder in

csv timestamp

Hi, I'm working on adding some csv data into splunk, and while some data looks ok, some other data is being bunche...

by Champion in

Issues with Splunk trying to open a file during a copy process

Customer is using a script that extracts the logs from the local SQL instance into a text file. When the extraction i...

by Splunk Employee in

Slow indexing?

Simple question here: ive been logging several logs recently. (often exceeding the 500mb cap) however, the indexin...

by Communicator in

Universal Forwarder license requirements

Folks, I was wondering if "Universal Forwarder" requires license to be installed on a Solaris syslog server? Thanks!

by Explorer in

Question about blacklist entry

I want to exclude all files that contain some keyword from splunk forwarder, I have added an entry in prop.conf. [...

by Builder in

How to quick and simple remove the host and all his logs from SPLUNK ?

Hi, I've got a problem. There is no way to remove the host from splunk? No DELETE button and confirmation, N...

by Explorer in

TIME_PREFIX

I have an autosys log with 4 columns (JobName|Start|End|Status) and would like to add them in splunk. Check_Job|05...

by Builder in

Windows Eventlog Not being forwarded

We use UF to forward events from a group of servers to our indexers. We also use deployment server to ensure consiste...

by Contributor in

multiple syslog servers question

Hi everyone, I have a question about setting up Splunk to record syslog messages from 2 different syslog servers....

by New Member in

Why Splunk installation fails with Exitcode='4' " wrong privileges" ?

My Splunk Installation failed with the error << Splunk Installer was unable to start Splunk Services. Please m...

by Splunk Employee in

_time not being set properly during indexing

I'm trying to index the output of the Nessus vulnerability scanner in NBE format. There are two types of events in...

by Builder in

csv advise

Hi, Hoping someone can help me with some csv input questions. I have some csv files that are created by users, and...

by Champion in

TLS/SSL Syslog Splunk Support

I'm always nervous about sending plain text syslogs around the place, and rsyslog has some fantastic options (SSL and...

by Engager in

Change home path location?

I've installed Splunk on my C drive. I want the data to be store on a different drive, where I have more room. How do...

by New Member in

filtering on yesterdays date?

Hi, I have a csv file, in a nice format (see below). The data is for rolling 7/10/21 day reports, that customers c...

by Champion in

Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

Getting Data In

Discussions

Importing the Splunk MIB to CA Spectrum 9.2

Kiwi and Splunk

Dealing with a few million little log files

wmi data through forwarder

Splunk automatically breaking log entries after 100 lines.

is crcSalt deprecated?

Time comparsion in search

forwarder configs

Load balancing and queuing

Location of "Remote performance monitoring" configs

csv timestamp

Issues with Splunk trying to open a file during a copy process

Slow indexing?

Universal Forwarder license requirements

Question about blacklist entry

How to quick and simple remove the host and all his logs from SPLUNK ?

TIME_PREFIX

Windows Eventlog Not being forwarded

multiple syslog servers question

Why Splunk installation fails with Exitcode='4' " wrong privileges" ?

_time not being set properly during indexing

csv advise

TLS/SSL Syslog Splunk Support

Change home path location?

filtering on yesterdays date?

The Payment Operations Wake-Up Call: Why Financial Institutions Can't Afford ...

Make Your Case: A Ready-to-Send Letter for Getting Approval to Attend .conf25

Community Spotlight: A Splunk Expert's Journey

Power Platform audit logs

Regex works but transforms.conf extracts only part...

Splunk Answers Content Calendar May 2025 🎉

Solaris UFs have different build hash than others

Edge Processor Destination not showing up in Pipel...

Getting Data In

Are you a member of the Splunk Community?

Discussions