Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
47 results
Sorted by:
10-28-2020
07:08 PM
i am a beginner in using splunk. I'm doing research on log traffic from Palo Alto. inside i upload data to splunk. what is the most appropriate sourcetype for me to choose?
Labels
- Labels:
-
configuration
-
using Splunk Enterprise
05-17-2018
09:34 AM
...ption to Sinkhole the file.
In our case I would not like to keep the file, just use the data for 24h so I will be selecting to Sinkhole it yet I am not sure how to configure data expiration. When a f...
05-19-2015
08:53 AM
Hi
I am interested to upload two distinct files form multiple directories. I have done this previously by using Splunk-web, but now I am trying to do it by modifying props.conf and input.conf. S...
12-03-2013
11:12 AM
I am clear of steps needed for uploading a .tar file but I have a question about how does it work. Splunk indexes the file eventually and stores it in the database which isn't easily human readable....
08-22-2017
06:27 AM
1 Karma
...ried the format s (As suggested in the caption).
But in doing so, Splunk is not recognizing the timestamp and as a consequence not uploading the data
How to fix this?
Sample epoch date: 1498892320
06-11-2019
08:59 AM
...onitor its AD data. But, I am provided with a snippet file of AD logs and should not monitor live data. How do I go about configuring the add-on/uploading the file in a readable format?
10-30-2020
01:03 PM
...een done to upload data to the bucket using the secret and access key provided [volume:s3] storageType = remote path = s3://<bucket_name>/ remote.s3.endpoint = https://s3-a...
Labels
- Labels:
-
indexer
10-23-2020
12:43 AM
1 Karma
I am trying to send logs through UF to my Stand alone instance but data is not getting forwarded. I have UF installed in one of my test server and added inputs.conf,outputs.conf and set d...
Labels
02-05-2015
01:28 PM
...s dropped.
To test, I edit the above 2 files, restart splunk, use the 'upload data' feature and select 'json_mixed' as the source type.
With TRANSFORMS-set = extractjson the log entries w...
08-20-2015
08:21 AM
Hi All,
I'm trying to Upload a file/log using the 'Add Data' -> 'upload' in Splunk Web. Unfortunately, as per most of our logs, the input isn't in a structured format 😞
An example event l...
- Tags:
- timestamp
