Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
47 results
Sorted by:
08-31-2011
08:25 AM
Hi,
I am trying to configure a lab environment but I am not seeing data in indexer. When I checked splunkd.log it says --
ERROR TcpOutputProc - Illegal format for config item 'uri'
ERROR N...
02-17-2022
04:36 AM
Hello! I have an environment with about 200 machines, all Windows Servers. All servers are sending TCP information through port 9997 directly to my Heavy Forwarder, all information is allocated i...
Labels
04-02-2018
03:20 PM
Hello everyone,
I have a lab in a Ubuntu VM. In this lab, I have the UF and the Splunk E. The forwarder monitors a folder that has a Catalina.out.bk file. The data arrives at Splunk E but it a...
12-15-2020
01:31 AM
Hello, My team and I installed a new UF on one of our systems. we wanted it to send the data from the system to a specific index we made for it. after we installed the UF it immediately s...
Labels
06-21-2019
06:04 AM
...onnected machine, it has a Universal Forwarder installed to it that sends directly to the CM and the data transmits successfully and all my data is indexed properly and extracts the fields as required....
12-05-2016
05:56 AM
I got an other question(s) regarding Splunk App for Stream
I am playing around with the Netflow feature of Stream
I convinced our network guys to send us some netflows.
Even that this is o...
07-25-2012
08:38 AM
3 Karma
I'm getting ready to finalize a Splunk install and roll it out for use... during my testing phase I added a bunch of data to my index that I don't need (eg, via syslog, WMI, legacy machines, etc). W...
06-26-2017
09:55 PM
...nd Display Current Environment *************
And start indexing events after that.
You could also use
HEADER_FIELD_LINE_NUMBER if your data
writes a consistent number of header
lines.
T...
08-07-2012
09:35 AM
Firstly I'm new to splunk and a bit confused.
One question I would like answered first is can you use new indexes in the free version and have a Universal Forwarder send data to it?
If so then c...
- Tags:
- universal-forwarder
12-02-2021
07:06 AM
...ireeye HX is sending data via TCP in CEF format. On the CM: # cat etc/master-apps/_cluster/local/inputs.conf <snip> [tcp://:1234] index = fe_data sourcetype = hx_ce_syslog # ls etc/m...
- Tags:
- FireEye
Labels
- Labels:
-
configuration
