Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
4,000 results
Sorted by:
06-18-2021
07:38 PM
Is there a way to monitor the searches for some specific fields? Let's say I wish to monitor if anyone is running any query that returns my SSN in the results.
Labels
- Labels:
-
search job inspector
03-25-2022
01:31 AM
When I click the Indexes and Volumes>volume_detail_instance,the page has no data to display,and it tips 'Search is waiting to type'. Anyone who can help me solve this problem,t...
Labels
- Labels:
-
other
4 weeks ago
Hi to all,
I have three machines: 1 deployment-server, 1 SH/Indexer and 1 forwarder. Looking at "monitoring console-panoramics" on deployment-server, i don't see the correct configuration (is a...
12-26-2021
09:48 AM
Hello Team, Splunk UF has been installed in all our 1000+ windows servers and we are monitoring those logs. Now the scenario is we have one more Splunk team in my organization and they needs t...
Labels
- Labels:
-
host
-
inputs.conf
11-01-2021
05:30 AM
...se as a syslog and audit log store similar to how ELK is often used. While we will add additional data sources at some point my primary focus is on collecting and forwarding /var/log/audit/a...
Labels
- Labels:
-
indexer
-
Linux
-
universal forwarder
03-01-2022
01:13 PM
Hello,
How would I initialize monitor command to pull the data/files from variable paths /locations? Some examples along with monitor command provided below:
Paths/Locations:
/RTAM/P...
Labels
- Labels:
-
universal forwarder
06-15-2021
01:29 AM
Dear Splunkers: I use nmap to monitor my device and contain these logs to Splunk,(every 6hrs) These data only include ip and tcp open port, E.g: &n...
Labels
- Labels:
-
alert condition
03-28-2022
09:57 AM
Hi Team,
I've multiple monitors on multiple forwarders and multiple tcpouts, I need to use forwarder hostname to route the monitor to respective tcpout, is there a configuration which can p...
Labels
- Labels:
-
host
-
Linux
-
universal forwarder
2 weeks ago
...as a lag by 1 or 2 hours based on that country's time zone and Splunk time zone, then figured out the it is because Splunk looks for a timestamp in the event and parse the data. Now , I need to monitor...
Labels
- Labels:
-
fields
09-05-2019
12:23 PM
We use Kubernetes, and I'd like to use Splunk to get more granular insight into how we use them. Do you have any best practices or apps and add-ons I can use?
