All, I have a few questions related to splunk stream 1) If a windows computer has splunk stream app installed and it has a UF installed, what are some differences in logging activity will I get b...
...config is supposed to be setup on a universal forwarder and how the indexer is configured for each streamfwd source?
Splunk is version 6.4.2 with app forstream 6.5.1
The forwarder I'm t...
...ing any information into Splunk.
In the Splunk GUI, they are appearing in Forwarder Management (and if I delete their entries, they reappear again), which looks good. I have two d...
I have a Splunk Enterprise/Splunk Cloud deployment that's been on autopilot for a while. We've been adding data sources and use cases, but I think there's a lot more we can get out of Splunk, and I...
I'm working on an input.conf from a universal forwarder when I noticed the first stanza is missing a ] ex: [WinEventLog://Application instead of [WinEventLog://Application] Since I d...
...ave a cluster and of course for the local data that pours in. location: within the location I thought of forwardersfor the servers (obviously) and then a heavy/intermediate forwarder w...
I have an add on for unix and linux downloaded on my monitored servers and the data is sent to my indexers.
In the Unix:Service sourcetype the time that is wrriten is 3.5 hours delayed, meanwhile t...
...unk at it? How is this traffic filtered or authenticated? Control of which index the data is dumped to seems to be in forwarder configuration, so the server seems to not have any control o...