...Enterprise configured as a forwarder.
How can I assign a source type and index to the data that does come in from the host that is configured with port 997 as a receiver? Sorry f...
Hi,
I have a simple TCP syslog server in the same network where I have setup my SplunkEnterprise platform 9.10. I am trying toforward the data polled into SplunkEnterprise by Add-On apps to t...
...nd it gets more and more confused: https://www.splunk.com/en_us/resources/videos/splunk-cloud-tutorial.html https://community.splunk.com/t5/Getting-Data-In/How-to-set-up-a-heavy-forwarder-to-forward-data...
I am trying to implement a simple Splunk system on my local computer to learn a bit about how you set up forwards and get data into Splunk. I am running SplunkEnterprise on a CentOS 8 v...
...ntermediate forwarder(Universal forwarder itself). Now I need to route data from Intermediate Forwarder in this way: if hostname=x ( Indexer Cluster AND Other SplunkEnterprise Instance)&n...
I have a Storm project and I want to clean all and reindex only the last days, and some specific files.
I have Splunk Universal forwarders monitoring my files for now.
I suppose that this is s...
...ventlog System
Specified input collection has been enabled
Now I want to add a Forwarder using the Splunk Web on my Enterprise system.
I log on to the website, select 'Add data' > 'Forward' &g...
Hello,
I have installed splunkenterprise in a windows environment. I have installed Universal Forwarder on a separate machine. Before running the ./splunk add forward_server command (to add the i...
I have been trying at this for a couple of weeks now with no luck. We have a SplunkEnterprise setup in AWS with a search head, 2 indexers, and an auto-scaled group of forwarders for cloud watch l...