Getting Data In

Thread Info

CSV Japanese header extraction

Dear all, I want to extract the Japanese CSV header from csv log file. I am configurations are as follows. inpu...

by Explorer in

Timezone calculation error?

I just finished loading a lot of data, and when reviewing it, I am seeing something odd. First, my log file is in ...

by Contributor in

Scripting Splunk through automated systems

Running into a strange issue here. We're attempting to run through scripts through our config management system - ...

by Explorer in

sourcetype from universal forwarder to splunk indexer

The universal forwarder has a very simple configuration of what to scan for (inputs.conf) and where to send it to (ou...

by Engager in

Script for database inputs

Is the splunk add-on script for database inputs compatible with versions of splunk that are after 3.x?

by Explorer in

Checkpoint Firewall Logs in Splunk

Hello All, I am trying to import some of my Checkpoint firewall logs into Splunk. I tried to setup a sample input ...

by Path Finder in

Filtering Windows logs on Splunk Forwarder

If I make configuration changes mentioned by Maverick, in http://answers.splunk.com/questions/9076/how-to-configure-a...

by Path Finder in

max throughputs of forwarders

dear sirs, I'm aware about default limitations in a lightweight forwarder (256KB), which can be increased. it’s al...

by Legend in

Hiow to forward events from servers and network devices

We have a splunk Indexer based on Linux and we have around 40+ servers and network devices in our network. Want to...

by New Member in

Basic steps to configure universal forwarder (4.2)

No migrations, no upgrade, installing forwarders from the ground up. from splunkd.log **ERROR TcpOutputProc - L...

by Engager in

How to configure a Forwarder to filter and send only the events I want?

I have a temporary need to filter and forward ONLY a specific set of events to my indexer. I see from a couple ot...

by Splunk Employee in

Audit logs added to Windows security events

Hi, In some cases it seems Splunk adds this kind of info to some winsec events: Audit:[timestamp=04-03-2011 04:...

by Path Finder in

Universal Forwarder Log DIR

Is it possible to configure the log directory of a Windows 4.2 unviversal fowarder? i.e. we want to log to a direc...

by Path Finder in

What happens to old buckets when upgrading to 4.2?

During a 4.2 upgrade on an indexer, does the upgrade convert the old indexes to the new 4.2 format?

by Splunk Employee in

Configure Scheduled Search to send out csv file in email instead of inline results

Hello, I have a scheduled search which sends out alerts when certain criteria matches. Currently the results are s...

by Path Finder in

After upgrade to 4.2 the Events from Windows Eventslogs are partially not working, lines broken at random positions

by Splunk Employee in

Problem with data parsing

After a restart Splunk changed the way it is indexing a syslog file. I have three log servers writing to an NFS sh...

by Path Finder in

Best way to invoke python script that generates .csv files for lookup

I have a python script that retrieves data from an external source and stores it in several .csv files. I have added ...

by Communicator in

Lightweigth forwarder upgrade

Hello, I am going to upgrade splunk light forwarder to splunk universal forwarder. In the splunk documentation I'have...

by Communicator in

Splunk Logs time

We can see splunk logs in /opt/splunk/var/log/splunk...we see logs are divided in 5 parts with 25mb of size.ex: audit...

by New Member in

Why is the "connection_host" option in a UDP stanza of inputs.conf being reported as a typo?

After an upgrade to 4.2, when Splunk starts up the configuration file checker reports that the "connection_host" opti...

by Splunk Employee in

Installing splunkforwarder msi with error: This installation package could not be opened...verify it's a valid Windows Installer Package

I downloaded the Windows 2008 64-bit Universal Forwarder without error but when I run splunkforwarder-4.2-96430-x64-r...

by Splunk Employee in

Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

Getting Data In

Discussions

CSV Japanese header extraction

Timezone calculation error?

Scripting Splunk through automated systems

sourcetype from universal forwarder to splunk indexer

Script for database inputs

Checkpoint Firewall Logs in Splunk

Filtering Windows logs on Splunk Forwarder

max throughputs of forwarders

Hiow to forward events from servers and network devices

Basic steps to configure universal forwarder (4.2)

How to configure a Forwarder to filter and send only the events I want?

Audit logs added to Windows security events

Universal Forwarder Log DIR

What happens to old buckets when upgrading to 4.2?

Configure Scheduled Search to send out csv file in email instead of inline results

After upgrade to 4.2 the Events from Windows Eventslogs are partially not working, lines broken at random positions

Problem with data parsing

Best way to invoke python script that generates .csv files for lookup

Lightweigth forwarder upgrade

Splunk Logs time

Why is the "connection_host" option in a UDP stanza of inputs.conf being reported as a typo?

Installing splunkforwarder msi with error: This installation package could not be opened...verify it's a valid Windows Installer Package

enabling forwarder in manager breaks splunkd, how to fix??

Discard log lines that do not start with a timestamp

Starting Splunk from post_backup script?

Aligning Observability Costs with Business Value: Practical Strategies

Mastering Data Pipelines: Unlocking Value with Splunk

Splunk Up Your Game: Why It's Time to Embrace Python 3.9+ and OpenSSL 3.0

Splunk Answers Content Calendar May 2025 🎉

Solaris UFs have different build hash than others

Edge Processor Destination not showing up in Pipel...

ERROR: Tor IP are not updating in lookup

How to integrate SentinelOne Singularity Enterpris...

Getting Data In

Are you a member of the Splunk Community?

Discussions