Hello
I have some directories that I need to monitor. Using updated inputs for the TA_nix app I am adding syslog/linux:audit data is specific paths. It mostly works as expected BUT I had a few o...
...opied the test file to C:\Program Files (x86) and modified the inputs.conf accordingly I could not read the file.
Is there something with a special character like "(" or ")" that is confusing S...
Hi,
I need to monitor two catalina logfiles that are in the same directory, but have different formats (and sourcetypes).
The naming convention is ../catalina.YYYY-MM-DD.log and catalina.out...
...ome kind of inpus.conf.d directory and have one inputs.conf-like file for every log we would like to monitor.
Our current inputs.conf is autogenerated and quite "messy". Having a directory with a d...
Hello fellow splunkers!
I'm about to set up an universal forwarder monitoring a specific path on a server.
On this server I have some files in the following directory /this/is/an/example/.
T...
...xplicit whitelist (and it doesn't work anyway).
The only things I've found that work are to explicitly list the directoriesand/or files. That is, either
[monitor:///var/weblogs/presellAppA/a...
...erified this by running ./splunk list monitor on the forwarder. Here BX187898, BX676909 are directories in /enc_logs-ep3/bker and have log files in those directories.
Need assistance with the w...
I've been struggling with this for several days now and cannot find a solution that works for me so I am turning to you all.
I simply want to exclude 2 files from a directory from being indexed....