We have multiple HF's and one DS in our environment. We want to monitor the underlying Linux operating System for which our HFs and DS run's on by forwarding it's OS eventstoSplunk indexers. I...
Following the instruction from here, SendSNMPeventstoyourSplunkdeployment I'm setting up the monitoring of the file al /var/log/snmp-traps. I wonder what would be the source type. I g...
Hello,
My name is Daniel, i am evaluating Splunkto be used as a part of a SOC but i haven't been able to configure linux boxes (Debian) tosend their log information to my splunk server, i've a...
I cannot figure out which component to enable HEC and where tosend the events. We have an on prem Splunk Enterprise distributed configuration with a Deployment server, Indexer and SearchHead. We a...
I've been trying to do this for the past three days.
I want my Linux machine tosendsnmp traps tosplunk server on threshhold values
Here is what I am doing
1. Installing snmp on my m...
I've heard that using AWS Lambda is a great way to get high volumes of data directly into Splunk without the overhead managing hardware. It seems like a great solution, can you provide an overview to...
Hello Community, I would like to inquire about some issues I am facing while setting up a heavy forwarder in splunk. Please take a look at the below issues :- 1) Hosts are visible in splunk b...
When setting up this receiver, otel fails to start with this msg: Error: failed to resolving: yaml: line 89: did not find expected key Line 89 is smartagent/snmp: below is the collector c...
Hi, let's say we got around hundred UF's which are DHCP (their hostname and/or ip address changes often)
1. From UF's perspective, nothing changes. It will send logs to indexers, it will poll the deployment...
...Enterprise running on-prem as a single instance deployment with the InfoSec app, and I am preparing todeploy Universal Forwarders to a select group of systems that will send security-related events...