Currently we have two heavy forwarder to configured to forward the data to the indexer. Just wanted to know what are the files being captured from both the servers using the below query. We are u...
The following sourcetype works fine when we upload a file against this sourcetype, but via the forwarder the csv fields are not being detected?
[incidentinfo]
DATETIME_CONFIG =
I...
...eceiver server address to the address of where Splunk Enterprise is installed.
I have followed the Splunk Streamguide, and installed this app. Is this the right way?
Many thanks
Hi,
Can someone please help guide me based on experience? What is the best mechanism to stream data to Splunk? As part of our organization we have built a custom logger service that can make a R...
...n installed on splunk server. How do I configure log stream in splunk with or without aws add on. I would step by step guide as I am new go splunk.
Thanks in advance.
...s one syslog stream via universal forwarder, where the sourcetype=syslog and index=syslog. In inputs.conf in /opt/splunk/etc/system/local I have configured the below &n...
...eavy Forwarder. As per the configuration guide, no configuration has been performed within the app on the search head or indexers. I have set the app up via the GUI on the heavy forwarder entering the h...
...emory). Due to this we are getting nearly 100 + incident per month.
Kindly guide us in what are the parameter (Config /services) do we need to check from splunk perspective.
thanks in advance.