I have 2 string which need to be searched in splunk both string having different index and different source type.one string is "published sourcing plan " and another string is "published transfer ord...
Created a custom streaming command that concatenates an event's fields and field values into one field (since the events that we're dealing with has an unpredictable list of fields, I couldn't f...
Hello, I'm hoping someone is able to help me find out what's going on with Splunk Stream and Netflow because I'm tearing my hair out trying to get it working. I have a separate indexer and search h...
All, I have a few questions related to splunk stream 1) If a windows computer has splunk stream app installed and it has a UF installed, what are some differences in logging activity will I get b...
Hi My servers (clients) are running splunk stream. I believe within the deployment server will contain the configurations that is telling the client what to stream (dns, dhcp, http, etc).&n...
Hi In known issues this problem is listed (STREAM-4301, STREAM-4409 😞 https://docs.splunk.com/Documentation/StreamApp/7.2.0/ReleaseNotes/Knownissues The proposed workaround is unclear: W...
...tats ..| eval ..] I'm getting error ([subsearch]: Streamed search execute failed because: Error in 'lookup' command: Could not construct lookup) when running above query and runs fine if i run it s...
We are running estreamer 2.2.2 (by latest entry in changelog) on our ad-hoc search head, v. 6.54 with Defense Center v. 5.4.
estreamer had been running fine since installation, there have been no ...
...ultisearch' command: Multisearch subsearches might only contain purely streaming operations (subsearch 1 contains a non-streaming command).... Any idea how this can be achieved?