Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
124 results
Sorted by:
09-08-2021
09:49 AM
I would like to retrieve the data in /var/log as correctly as possible. Currently I am simply monitoring the entire /var/log folder with no pre-selected source type. On the List of pretrained...
Labels
- Labels:
-
sourcetype
-
universal forwarder
06-06-2018
06:10 AM
...s there a way to identify the list of available indexes and source types that is used in my app?
06-15-2018
11:40 AM
I am able to get a list of indexes and their source types using | metadata type=sources index=* sourcetype=* ||dedup source, but I want to add the source types to the list and be able to pick the i...
- Tags:
- splunk-enterprise
10-02-2014
02:45 AM
Hi,
Could you tell me, do you have sort of "list of supported data sources"?
Actually, I want to know complete list of connectors to data source types supported in Splunk Enterprise.
Thanks!
11-28-2013
11:12 PM
Hi,
Is there a pretrained source type for .dat OSIsoft PI log files ?
I know I can create a .csv file manually from the .dat file, then use the .csv file in Splunk but I would like to read the l...
06-08-2016
04:30 AM
...pecific logs of one of the vendor appliances (vendor specific Splunk App). So, the problem is that I configured all my network devices (i.e. switch, router, firewall, etc) to send syslog to our Splunk I...
04-15-2011
06:41 AM
2 Karma
My props.conf has:
[server]
MAX_TIMESTAMP_LOOKAHEAD = 0
SHOULD_LINEMERGE = true
#BREAK_ONLY_BEFORE_DATE = true
BREAK_ONLY_BEFORE = ^\d{4}-\d{2}-\d{2} \d{2}:\d{2}:\d{2}[,.]\d{3}
TIME_FORMAT = %Y-%...
02-05-2019
06:51 AM
We have WEB logs, and we need to isolate the source IPs that only (only) hit two URLs.
The fields are:
src for source IP
uri_path for hit URL
- Tags:
- splunk-enterprise
09-14-2017
07:16 AM
...lass that includes just the clients. But a number of the scripts have source types (auditd, Unix:ListeningPorts, etc.) that are absent from the Settings: (Data) Source types display, and as a result I c...
01-09-2019
06:39 AM
Hi,
I am trying to write a query to list events from source type A only when the corresponding event in source type B does not contain a specific event code. I believe the only correlation e...
- Tags:
- splunk-cloud
