Splunk Dev

Discussions

Thread Info

Scripted Input: Python->Bat- File->JAR File

1) I have a JAR file that produces data I wish to index. 2) I have a BAT file that calls that JAR file, 3) I have a p...

by Engager in

Splunk Add-on/App for DB connect in Cloud environment

Hi All, if there is a Splunk Add-on/App for Oracle Database connect in Cloud environment? Kindly the share the ...

by Explorer in

I dont see "Receive Data" section under "Settings - > Forward and Receiving"

Does it not shows up for trail accounts? I am trying to configure splunk cloud with forwarder in my local machine. I ...

by Explorer in

Sourcetype reassignment with props and transforms not working

I'm trying to create a very basic sourcetype override. The inputs.conf on a set of forwarders have been set with a wi...

by New Member in

Port number in event field

Sorry for a beginners question, but I have been thrown in the deep end with this. I have an error.log file, in the...

by New Member in

I can see data in logs but not in index for http event collector

I can see http_event_collector_metrics.log logs under $SPLUNK_HOME/var/log/introspection/splunk/ But splunk sa...

by New Member in

How to display search results by day

Hello, I have a search that calculates the total number of a specific log event and displays results in the tabl...

by New Member in

Splunk exhibiting weird behavior while importing a CSV

Hello all, I am having problems importing a file which is a .txt file but formatted as a CSV. The file has a fields l...

by Engager in

Unable to open Splunk Enterprise on local Windows machine

Hii experts im facing problem regarding splunk enterprise unable to open showing window localhost:8000 Application...

by New Member in

can't see all the event of an index anymore

If I search | eventcount summarize=false index=index3 the answer is count : 32339388 If I search index=index3 182154...

by Path Finder in

Unable to access Rest API over http in splunk 7.1

Hi , I am using the splunk latest version 7.1 . Not able to access the splunk rest API using http even after chang...

by Path Finder in

SNMP doesnt get any data

I do all the configuration needed but still no data ingesting in the splunk ##POLL### [snmp://<NAME>] communityst...

by Builder in

Comparing the 2 search results for a same search criteria and provide the data that do not match those 2 search results [Search done on different time]

I need to compare the search results for my search criteria ! Example search criteria : host="iadtypweb*" | stats...

by New Member in

troubleshooting data whether timezone is an issue

I'm getting data that drops off daily for a series of hosts on a daily basis. One group is in singapore and anothe...

by Path Finder in

Script:InstalledApps Compare Multiple Machines

I am trying to see if it is possible to have Splunk show Application/Patch differences between multiple machines. Ess...

by New Member in

Evaluate Splunk Enterprise on Windows 2K8 Server R1 32 bit

All, I found version 4.3.7 of Splunk Enterprise that runs on Windows Server 2K8 32 bit and I want to evaluate the ...

by New Member in

Search String for all users that have two particular Jboss messages

Here is my original Jboss search string variables: index=bob CLASS="bobclass" MESSAGE="bobmessage1" MESSAGE="bob...

by New Member in

Is is possible to split already indexed data in the main index to new indices?

Our Splunk instance has indexed data from the last 1 year from various servers and is in use currently. Most of the d...

by Explorer in

Which port do we use to forward data from a HF to indexer, when we already have multiple UF sending logs to HF on port 9997?

UFs ---9997---> HF --- 9997---> Indexers We have above structured architecture, where multiple UF will send logs t...

by New Member in

Ratio of total number Informational events and events with certain keywords into it

My query is like this, here eventstats is not doing what it is supposed to do. index=servers sourcetype=xs_json | ...

by Contributor in

Translating a defined tracking session using SPL

How would I do this in SPL? I want to calculate a tracking session: Find an ENTER event in the log. Search forwa...

by New Member in

Getting Execprocessor error with bash script

I am getting this error when running my script as a scripted input: 05-07-2018 10:28:00.177 -0500 ERROR ExecProces...

by Explorer in

how pull logs from url?

In my environments uses tools that work scanner vulnerability and send result to URL in cloude this URL contains the ...

by Explorer in

Getting error on indexer cluster with 3 Peer nodes and one search head. The Repfactor = 3 and Searchfactor = 2

Search peer has the following message: Indexer Clustering: Too many bucket replication errors to target peer=10.x.x.x...

by Explorer in

Is there a simple resource for how to code up extensions in Python that work with the stats() command?

Is there a good, simple resource for how to code up extensions in Python that work with the stats() command? Backg...

by Engager in

Get Updates on the Splunk Community!

Splunk Dev

Discussions

Scripted Input: Python->Bat- File->JAR File

Splunk Add-on/App for DB connect in Cloud environment

I dont see "Receive Data" section under "Settings - > Forward and Receiving"

Sourcetype reassignment with props and transforms not working

Port number in event field

I can see data in logs but not in index for http event collector

How to display search results by day

Splunk exhibiting weird behavior while importing a CSV

Unable to open Splunk Enterprise on local Windows machine

can't see all the event of an index anymore

Unable to access Rest API over http in splunk 7.1

SNMP doesnt get any data

Comparing the 2 search results for a same search criteria and provide the data that do not match those 2 search results [Search done on different time]

troubleshooting data whether timezone is an issue

Script:InstalledApps Compare Multiple Machines

Evaluate Splunk Enterprise on Windows 2K8 Server R1 32 bit

Search String for all users that have two particular Jboss messages

Is is possible to split already indexed data in the main index to new indices?

Which port do we use to forward data from a HF to indexer, when we already have multiple UF sending logs to HF on port 9997?

Ratio of total number Informational events and events with certain keywords into it

Translating a defined tracking session using SPL

Getting Execprocessor error with bash script

how pull logs from url?

Getting error on indexer cluster with 3 Peer nodes and one search head. The Repfactor = 3 and Searchfactor = 2

Is there a simple resource for how to code up extensions in Python that work with the stats() command?

Observe and Secure All Apps with Splunk

Splunk Decoded: Business Transactions vs Business IQ

Fastest way to demo Observability

Limit Splunk RUM coverage to a specific JS file

API call to retrieve information about a search wh...

Much needed size optimization of this app - Python...

Custom command only running a few times when getti...

Splunk JAVA SDK Version issue

Splunk Dev

Are you a member of the Splunk Community?

Discussions