Getting Data In

Start a Conversation

Discussions

Start a Conversation

Thread Info

Curl with negotiate to run a search

I am interacting with a splunk server using apache to do single sign to the Splunk web UI. If I go to the followi...

by Communicator in

Divide a Result By Two

The following search I'm running is giving me duplicate results for each event: (host="zakta-test.inno-360.com") A...

by Path Finder in

splunk for cisco router

running 6.0.1. currently capturing syslog from sonicwall firewall. do I need a cisco add-on to capture cisco sy...

by New Member in

Security Windows Event Logs not collected by the UF on Windows 2008 and Windows 2012 - Splunk 6

Hi all, I need your help regarding SDDL (Security Descriptor Definition Language) configurations for setting the righ...

by Splunk Employee in

Extracting fields from JSON file format

Hi, I want to extract the fields from JSON File format and after extrating the fileds. I want to remove one of the va...

by Contributor in

Powershell Scripting for SPLUNK

Hi, I have installed Splunk in my windows machine and I want to give the scripted input to Splunk. I know Splun...

by Contributor in

Universal Forwarder install- can't browse log file location

I'm trying to install "splunkforwarder-6.0-182611-x64-release" on a Windows 2008 R2 server. While going through the i...

by Communicator in

Time Stamp i(All time vs 15 min)

When I do a search on my search head for all time, I see correct time stamps in standard EST. When I do a 15 minute s...

by Motivator in

Splunk not recording events on hosts

Hello, I am running the free version of Splunk for syslog (v 5.0.3) and after a server reboot last week, it is no ...

by New Member in

windows splunk forwarder not sending data

My Server monitors 4 0ut of 5 The one below does not get monitored: C:\Windows\System32\LogFiles\HTTPERR\httperr1....

by Explorer in

Iterate the extraction of json objects using Splunk query language

Is there an example that shows how to iterate the extraction of json objects using Splunk query language? The spat...

by Motivator in

Setting heavy forwarder for sending only few events which matched with Regx

I am setting up heavy forwarder on multiple machine, out of that one of them have below requirement, 1) Heavy forw...

by New Member in

Universal Forwarder Installation- Error: No logon servers are available to service the logon request.

I'm trying to install "splunkforwarder-6.0-182611-x64-release" on a Windows 2008 R2 server. While going through the i...

by Communicator in

Universal Forwarder Error during install

Hi, I'm trying to install "splunkforwarder-6.0-182611-x64-release" on a Windows 2008 R2 server. While going through t...

by Communicator in

Question about timestamp formatting

I have this is a search: ... |eval phaseD_time=if(searchmatch("SERVICE_INSTANCE,MESSAGE_RECEIVED,SERVICE_REQUEST"), _...

by Explorer in

fsck messages

Hi, I am seeing a lot of "ProcessTracker - (child_56__Fsck) Fsck - Rebuild --bloom-only bucket /apps/splunk/splunk...

by Champion in

.bash_history on NFS-mounted home directory

Hi. We would like to index users' shell history (.bash_ history) in Splunk. The issue is that we have shared home ...

by Builder in

Removing Garbled logs by linecount before indexing

Hey everyone, So I have a script that generates status logs for a few network devices that my Splunk forwarder grabs,...

by Path Finder in

ExecProcessor appends "-index main" to end of scripted input command-line

I've got a scripted input being called like so (inputs.conf): [script://./bin/GetFaults.path] source = ciscoucs:py...

by Motivator in

splunk-perfmon.exe exited with code -1

Hello, I am trying to find out why I receive "ExecProcessor - Ran script: "$SPLUNK_HOME\bin\splunk-perfmon.exe" -i...

by Champion in

Get Updates on the Splunk Community!

Getting Data In

Discussions

Curl with negotiate to run a search

Divide a Result By Two

splunk for cisco router

Security Windows Event Logs not collected by the UF on Windows 2008 and Windows 2012 - Splunk 6

Extracting fields from JSON file format

Powershell Scripting for SPLUNK

Universal Forwarder install- can't browse log file location

Time Stamp i(All time vs 15 min)

Splunk not recording events on hosts

windows splunk forwarder not sending data

Iterate the extraction of json objects using Splunk query language

Setting heavy forwarder for sending only few events which matched with Regx

Universal Forwarder Installation- Error: No logon servers are available to service the logon request.

Universal Forwarder Error during install

Question about timestamp formatting

fsck messages

.bash_history on NFS-mounted home directory

Removing Garbled logs by linecount before indexing

ExecProcessor appends "-index main" to end of scripted input command-line

splunk-perfmon.exe exited with code -1

Admin Your Splunk Cloud, Your Way

Cloud Platform | Discontinuing support for TLS version 1.0 and 1.1

New Customer Testimonials

Dashboard Studio - Adding a drop down to filter re...

Splunk Cloud: HEC is not receiving data from cribl...

Connection error with Splunk HEC data input?

How do I effectively filter information?

How to determine which events came from HEC?