After we upgraded to v9.0.1 we get a warning when following dashboard-generated links pointing "outside" splunk:
Redirecting away from Splunk
You are being redirected away from Splunk to ...
Hi
I have a problem when accessing Splunk over a reverse proxy. It seems that the required HTTP Header
X-Splunk-Form-Key
is not being set by the browser. This is despite the fact that the br...
...oalesce(FLAG, "b-list")
| inputlookup c-list.csv append=true
| eval FLAG = coalesce(FLAG, "c-list")
|.... <rest of the query follows>.... My desired outcome is a M_C-list.csv Alice,a...
I am noticing for some of our events our playbooks run multiple times on the same event. How can I go about keeping that from happening? The second run of the playbook is generating a lot of error no...
Dear All, Please suggest how to create separate incident review dashboard for different team. OR How the notable will separated base on Teams. i.e. Windows Team - Windows Team can only ...
Hi, I am trying to get Token from dashboard, "Settings" -> "Tokens". However choosing "Tokens", The screen continue to display "Loading...". I've waited it over a hours... The splunk version is...
I have noticed that reading an output of a TCP dump is as follows:
The requesting Host sends a synchronization flag (SYN) in a TCP segment to create a connection.
The receiving Host 192.168...
Splunk Universal Forwarder upgrade to 9.1.3 is failing with Copy Error "Setup can not copy the file SplunkMonitor NoHandleDrv.sys". Attached the error message
...wo small test csv files: first_file.csv and second_file.csv . They each contain three fields: _time , row , and file_source . I tested this code first:
| inputlookup first_file.csv
| eval flag...