Hi Team, @ITWhisperer @gcusello I am parsing the CSV data to Splunk, testing in dev windows machine from UF. This is the sample csv data: Subscription Name Resource Group...
We are using 'Splunk App for Lookup File Editing' version 4.0.1. There are two issues that bother me. First is the continuous popup about 'Save Backup'. I need a way of turning t...
...o a file and the UF is set to monitor the directories. No issues there, however I do run into an issue why I try to source type or set an index for these logs. I have edited the indexes.conf...
Hi, I have an issue here with the fishbucket of the Universal Forwarder. I have tried to look for quite a lot of documentation, but it seems that there is too little documentation, and there are a...
Hi,
if i run this query in simple search bar it works fine. However, when i create panel and add the below, i'm getting error as waiting for input.
Please could you advise?
index=hello s...
Hello world, I'm trying to use rex to rename the part of the strings below where it says "g0" to "GRN". So the output would read 01-GRN1-0, 01-GRN2-0etc. I have been unable to get it to work and any...
...loudparsing transforms.conf [cloudparsing] REGEX = \"event_sub_type\":\"(WAN Firewall|TLS)\" DEST_KEY = queue FORMAT = nullQueue Can someone please guide how to exclude these events whose “e...
...orks fine in regex101 however it's not extracting all field values in Splunk
For ex: | rex field=_raw "region":\s(?P<_region>"\w+-\w+-\d)"
the above rex is only extracting us-east-1 region o...