...onnection is established between them when doing $ netstat -an.
I activated debug messages toappear on logs and I have the following error in "splunkd.log":
04-19-2012 09:51:10.129 +0100 ERROR pipeline...
...orum that are similar have been around sending messages to different recipients based on the results. I am trying toaggregate the results per device and send one email per device.
Any help?
...ery modular and how they're wired together through various .xml files in $SPLUNK_HOME/etc that wind up together in $SPLUNK_HOME/var/run/splunk/composite.xml
If an event lands in the indexing pipeline...
I want to set up an alert to fire when a transaction with 2 events is not complete.
Here is my search:
("Submitted order" OR "Murex - Received ExecutionReport" ) sourcetype="enable-i...
According to the "Format events for HTTP Event Collector" document, I can send time , host , source , sourcetype and index .
I would like tosendadditional event metadata. Is this p...
Hello Team,
I have a error data coming to index (we filtered tosend only error logs to this index ), I wanted tocreatean alert when ever there is any new events coming to that index and don't w...
...hantom, I have to manually press the "Sendto Phantom" button. Is there a good method toautomate this?
The Phantom add-on has an alert action tocreatean event in Phantom, but the add-on's README says t...