...files from server 2 and server 3
My current input definitely will index duplicate data since all three servers will be hitting the network storage at a time, which may easily break s...
Need to read from all files present in /temp/logs/ directory except one file abc.log
Directory looks like
xyz.log
ab.txt
ef.log
abc.log
inputs.conf
[monitor:///temp/logs/]
index = a...
We have a requirement to forward all the logfiles from /var/loginternal linux OS on the SplunkEnterprise cluster to a security app the same as all the other linux servers in the system, this in...
I am operating in an environment with a standalone SplunkEnterpriseinstance running v8.1.3 on RHEL. In my environment I have around 350 Universal Forwarders that have been up and running f...
Hi there!
We are receiving logs from a NetApp file server about what user access, etc. Log format very similar/same as the Windows Events in XML. (So parsing looks good) We also have EnterpriseSecurity...
After the ES 4.5 Upgrade the Incident Review tab can only be viewed properly with IE & Firefox, its a blank dashboard in chrome.
SplunkEnterprise 6.5 upgrade was completed a couple weeks a...
...0.5.2.3790.203 I used the field extractor to create a regex string that matches the log entry and extracts the product_version. I've created a custom app with these filesin it, pushed from t...