...ecause they exist outside of Splunk.
Analogies tend to be a great way to convey new concepts. So I'm curious what analogies forsourcetype have worked for you?
...aken are as follows: Log Archival: All Azure Firewall logs are set to archive in a storage account Microsoft Cloud Add-On I added the storage account to the Microsoft Cloud Add-On using the s...
...etwork logs into Splunk.
During the POC (non-clustered env) we installed several networking Splunk apps/add-ons like Arista Switch Source, F5 Sources, Palo Alto Firewall, etc. We deployed them onthe...
...o you addthe Host and sourcetypes so they show onthe Search Summary screen?
Theonly way I seem to be able to view them is by typing "index=log name" in the search box?
Thanks
...eliably add more logs that it picks up the fields on and does the extracts correctly. When thelogs are ingested in prod, however, thesourcetype is picked up but the extracts aren't being done. I...
...uns a forwarder. The rails logfor each project is added using the following type of command, so that thesourcetypes match the pattern in the above stanza.
/opt/splunkforwarder/bin/splunkadd m...
...nything for those 4 files under theSources, Sourcetypes and Hosts when I look here: $SPLUNK_HOME/en-GB/app/search/dashboard_live
So to me, it doesn't look like the files have been indexed for s...
Greetings: In search of Cisco sampling logs with thesourctype=cisco_wsa_squid to sharpen my spl . Can any one point me to a location of such logfor download ?