Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Getting Data In
Getting Data In
×
Are you a member of the Splunk Community?
Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Discussions
| Thread Info | |||||
|---|---|---|---|---|---|
|
I need to collect windows security event logs and do two things with them. First forward the data to another log coll...
by
PaulEscher
Explorer
in
Getting Data In
08-23-2011
|
1
|
2
| ||
|
|
I'm sending CEF messages to a Splunk forwarder listening on TCP:9999. The lines are not being individually being iden...
by
mlulmer
Explorer
in
Getting Data In
08-10-2011
|
0
|
6
| ||
|
|
We are using SplunkUniversalForwarder 4.2.3 x64 to forward some logs. inputs.conf has the following stanzas
[monit...
by
anantshah
Path Finder
in
Getting Data In
08-22-2011
|
0
|
3
| ||
|
|
I require to monitor windows event logs on my linux splunk server. I realize that i will likely have to convert the w...
by
topscms
Engager
in
Getting Data In
07-14-2010
|
2
|
2
| ||
|
|
Im currently indexing large amount of data and monitoring the process and usage from the Deployment Monitor.
For s...
by
Dark_Ichigo
Builder
in
Getting Data In
08-23-2011
|
2
|
2
| ||
|
|
Hello
i have been struggling to get some logs from a machine on a non-windows platform. Would like to know if it i...
by
rashidmirza
New Member
in
Getting Data In
08-21-2011
|
0
|
5
| ||
|
|
I have what appears to be a simple monitor to watch for a specific file name with a regex to define the date stamped ...
by
MasterOogway
Communicator
in
Getting Data In
05-09-2011
|
0
|
4
| ||
|
|
Greetings,
I am working with the REST API, and have had some success from the command line. For instance:
curl ...
by
jgauthier
Contributor
in
Getting Data In
08-19-2011
|
2
|
12
| ||
|
|
Hey everyone. All of my input data comes into splunk in .csv format. Each line is a record, and it has numerous times...
by
msarro
Builder
in
Getting Data In
08-22-2011
|
0
|
1
| ||
|
|
I would like to know what to expect with regard to Splunk's daily indexing volume for my Splunk for MSExchange App. ...
by
maverick
Splunk Employee
in
Getting Data In
08-22-2011
|
1
|
2
| ||
|
|
Hello all,
sometimes when I start splunk I get following message:
Splunk has detected an unclean shutdown....
by
kronos121
Explorer
in
Getting Data In
03-28-2011
|
3
|
4
| ||
|
Hello,
we use Splunk 4.1.7 and we would like to import once every night a file with the following content:
1970...
by
tpaulsen
Contributor
in
Getting Data In
08-19-2011
|
0
|
2
| ||
|
|
I have:
two existing OpenBSD Centralized Syslog loghosts (one is syslog-ng, one is syslogd)a new dedicated server ...
by
tnorth
Engager
in
Getting Data In
08-20-2011
|
1
|
3
| ||
|
|
this solution worked for me for log files that are on the same machine as the splunk server. But when I started forwa...
by
wtanaka
Explorer
in
Getting Data In
08-19-2011
|
0
|
1
| ||
|
I have a requirement to have data older than one year removed from Splunk. By "older than year", I mean the event has...
by
Branden
Builder
in
Getting Data In
08-15-2011
|
1
|
5
| ||
|
|
I am trying to set up a universal forwarder with an inputs.conf which only contains something like this:
[monitor:...
by
wtanaka
Explorer
in
Getting Data In
08-19-2011
|
1
|
1
| ||
|
Is there a TCP connection flowchart showing how the TCP connections are being established, controlled and closed betw...
by
MuS
SplunkTrust
in
Getting Data In
02-22-2011
|
4
|
2
| ||
|
|
Hello all,
I got the problem, that Splunk is not able to index any data which is on the host system. Splunk itself...
by
Katsche
Path Finder
in
Getting Data In
08-17-2011
|
0
|
26
| ||
|
|
I am pretty sure this involves lookups but here is what I am attempting.
I have a list of users in a CSV (users.cs...
by
ryangibson99
Explorer
in
Getting Data In
08-15-2011
|
3
|
2
| ||
|
|
I tried to put the "TIME_PREFIX = ^" at props.conf at system/default, system/local, myapp/default, myapp/local but no...
by
houxiaoxiao
Engager
in
Getting Data In
08-17-2011
|
2
|
1
| ||
|
|
We are currently looking for a way to find the number of "unique" request for a given event type with splunk. Like th...
by
ChrisJack
New Member
in
Getting Data In
08-17-2011
|
0
|
3
| ||
|
|
Hello all,
I am running Splunk 4.2.3 on WinXP 32Bit in VirtualBox. Everytime I try to add some files to my databas...
by
Katsche
Path Finder
in
Getting Data In
08-16-2011
|
0
|
14
| ||
|
|
Hi guys,
I have some universal-forwarders forwarding to an indexer (4.2.2) and all works great, i set the sourcety...
by
Splunker
Communicator
in
Getting Data In
07-22-2011
|
1
|
2
| ||
|
|
Has anyone seen the errors below and know how to correct? This same perfmon.conf is applied to both Windows 2008 64-b...
by
larry_lind
New Member
in
Getting Data In
07-22-2011
|
0
|
3
| ||
|
|
Is Splunk planning to create and/or provide a Splunk for Exchange App soon, to monitor emailing and other user activi...
by
maverick
Splunk Employee
in
Getting Data In
09-21-2010
|
3
|
7
|
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Become An Expert
Claim a $25 Cisco Store Gift Card
Help us improve the Splunk Community and complete our survey today!
Top Labels
-
add-on
2 -
administration
12 -
AIX
1 -
audit
1 -
blacklist
92 -
CLI
1 -
configuration
32 -
CSV
206 -
data
470 -
development
5 -
encryption
1 -
eval
2 -
field extraction
549 -
fields
5 -
forwarder
1 -
forwarder management
3 -
heavy
1 -
heavy forwarder
931 -
host
154 -
HTTP Event Collector
433 -
index
538 -
indexer
703 -
indexing performance
1 -
inputs.conf
827 -
installation
5 -
intermediate forwarder
141 -
introduction
3 -
JSON
389 -
kvstore
1 -
Linux
450 -
login
1 -
Mac
30 -
metadata
1 -
metrics
2 -
modular input
187 -
monitor
308 -
monitoring console
1 -
other
47 -
proactive Splunk component monitoring
2 -
props.conf
970 -
regex
5 -
saved search
2 -
scripted input
242 -
search
1 -
search head
2 -
source
290 -
sourcetype
491 -
Splunk Enterprise
1 -
Splunk Investigate
1 -
splunk-assist
2 -
subsearch
1 -
syslog
314 -
time
204 -
transforms.conf
572 -
troubleshooting
15 -
universal forwarder
1,541 -
using Enterprise Security
3 -
using Splunk Cloud
4 -
using Splunk Enterprise
16 -
whitelist
60 -
Windows
583 -
XML
90
- « Previous
- Next »
Get Updates on the Splunk Community!
Community Content Calendar, November Edition
Welcome to the November edition of our Community Spotlight! Each month, we dive into the Splunk Community to ...
October Community Champions: A Shoutout to Our Contributors!
As October comes to a close, we want to take a moment to celebrate the people who make the Splunk Community ...
Stay Connected: Your Guide to November Tech Talks, Office Hours, and Webinars!
What are Community Office Hours?
Community Office Hours is an interactive 60-minute Zoom series where ...
