Hi All, Our Search heads are with Splunk Cloud version 8.2.2203.2 and there is a requirement from our application team to use StreamProcessor Service that is part of Splunk offering (Ref: h...
...onfigures inputs.conf to monitor some basic win event logs (e.g System, Security, Application).
Both of the troublesome forwarders are on machines in a dmz and were installed by the same p...
The purpose of this topic is to create a home for legacy diagrams on how indexing works in Splunk, created by the legendary Splunk Support Engineer, Masa! Keep in mind the information and diagrams i...
All, I have a few questions related to splunkstream 1) If a windows computer has splunkstream app installed and it has a UF installed, what are some differences in logging activity will I get b...
...vents in XML format to Splunk.
I tried to make two different stanzas in inputs.conf trying to ingest the same log in two different ways but it does not seem to work.
It looks like Splunk merge the...
I've used SplunkStream app to get DNS logs from a Windows DNS server. I got the logs to a Search Head instance that has the Enterprise Security app. However, I can't seem to thedata, which is i...
Hi,
I just made a fresh install of Splunk server on a CentOS 7 machine. RPM install, configuration to launch splunk as a splunk user with systemctl etc All good.
Right now in my health check I h...
We intend to collected netflow/sflow logs in our Splunk Enterprise solution. I read that there is an app required to collect logs. Also I came across splunk docs to configure flow collector- h...