...re entered as http://host:port in the Stream app configuration. When the standalone streamfwd is run it gets the correct URLs from the stream app but it looks like it tries to use SSL.
From stream...
...config is supposed to be setup on a universal forwarder and how the indexer is configured for each streamfwd source?
Splunk is version 6.4.2 with app for stream 6.5.1
The forwarder I'm t...
Hi By just adding command.arg.1 = '...' in commands.conf I get the following error: "Command test appears to be statically configured for search command protocol version 1 and static configuration...
I have configured stream addon on UF and specified the location of stream app on SH, as per the docs. On tcpdump, I can see traffic going back and forth between SH and UF, however, I dont see the U...
When I configure a service from a service template.
ITSI's service health score is disppear. But KPI result is correct.
After a long time is gone , servce health score of Service A...
Trying to extract the actual query
sourcetype=extendedevent EventClass=QUERY_END | rex "TextData=(?P.*);NTCanonicalUserName" | rex field=Query "FROM [(?\w+\W?\w+)]" | bin _time span=1d | eval...
Hi,
I have a tcp data stream that has embedded hosts that I need to transform, and I'm hoping to get some regex help. Here's the stream:
2015-03-22 17:13:36 "myhost" some random and v...
All, I have a few questions related to splunk stream 1) If a windows computer has splunk stream app installed and it has a UF installed, what are some differences in logging activity will I get b...
Hi My servers (clients) are running splunk stream. I believe within the deployment server will contain the configurations that is telling the client what to stream (dns, dhcp, http, etc).&n...