Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
12 results
Sorted by:
10-01-2010
06:55 PM
1 Karma
Greetings! I'm still super new to splunk, so please be gentle :)
I am trying to extract a timestamp from CSV records.
A single CSV can contain N records. Each record has its own timestamp, but the ti...
07-24-2013
12:45 AM
I've implemented per-event source types assignment as described here: http://docs.splunk.com/Documentation/Splunk/5.0.3/Data/Advancedsourcetypeoverrides Basically it works. For events matching a R...
10-24-2021
11:58 AM
...ynamically change and parse message logs and then parse with good sourcetype stanza and deliver to different index. depends on log type (eg. different OS, or network equipment, etc...)
Labels
- Labels:
-
sourcetype
12-04-2018
10:20 AM
I've heard that using Splunk's default source type detection is flexible, but can be hard on performance. What is the best way to define source types that keeps performance speedy?
09-21-2020
02:15 AM
1 Karma
I am dynamically extracting a sourctype using props.conf and tranform.conf file. But the extraction is not working as expected. The soucetype i am extracting is "e...
Labels
- Labels:
-
props.conf
04-13-2010
05:25 PM
1 Karma
Hello,
System type: Linux
We have splunk running on our centralized syslog-ng server. We then have other servers forwarding syslog traffic to it. Those logs are then stored in their own f...
03-20-2019
01:55 PM
Both servers is CentOS 7
One with Splunk Enterprise 7.2.5
Splunk App for Infrastructure 1.2.3
Splunk Add-on for Infrastructure 1.2.3
one with Splunk Universal Forwarder 7.2.5
Error messa...
08-21-2014
02:17 AM
1 Karma
Index time field extraction & Search Time field extraction
How do both differ ? Which has less performance impact of search query ?
11-13-2017
08:41 PM
please help me in detail step-by step i have no idea on Cyberoam.
- Tags:
- splunk-enterprise
09-24-2012
10:35 AM
1 Karma
I've seemingly installed the InterMapper app according to the directions, yet the sourcetype is syslog_forwarded instead of InterMapper. Where would that be configured?
9/24/12
10:27:29.000 A...
