×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
canalesjac
Path Finder
Member since: ‎11-02-2012
‎10-20-2020
Community Statistics
Posts 15
Solutions 3
Karma Given 1
Karma Received 14
Member Since ‎11-02-2012
Activity Feed
View All

Re: How do i get Epic Hyperspace logs to Splunk wi...

by in Splunk Enterprise Security
‎08-24-2023 12:56 PM
‎08-24-2023 12:56 PM
I didn't see any info about parsing these logs. Mine are sending as syslog but nothing is parsed and it's all XML formatted. Did you chose something other than syslog or create a parser?   ... View more

Re: How do I get Solarwinds data into Splunk with ...

by SplunkTrust in Splunk Enterprise Security
‎03-15-2022 12:03 PM
‎03-15-2022 12:03 PM
It's mostly in the docs: https://docs.splunk.com/Documentation/Forwarder/8.2.5/Forwarder/Installtheuniversalforwardersoftware and maybe https://docs.splunk.com/Documentation/Forwarder/8.2.5/Forwarder/Configuretheuniversalforwarder As to logrotate - that's all outside of Splunk.  Basic Linux maintenance on log files.  Any internet search engine is your friend here and all will lead to results that are useful. Best search may be though to get some "Splunk specific" search results, using a search like "splunk syslog" and read through a few of those best practices that will come up. ... View more

Re: How can I monitor VMware Horizon View with Sp...

by in Splunk Enterprise Security
‎09-10-2021 02:39 PM
‎09-10-2021 02:39 PM
I'd posted an idea on Splunk Ideas.  Please vote to get this add-on and app created.   VMware Unified Access Gateway & Horizon Desktop Desktop | Ideas (splunk.com) ... View more

Re: How to get ExtraHop ML security detections int...

by in Dashboards & Visualizations
‎02-18-2020 10:43 PM
‎02-18-2020 10:43 PM
I found the answer to my question. ExtraHop Reveal(x) can send data to Splunk as a SIEM Syslog target. You can create a ExtraHop ML Detection Trigger and send it to your Splunk target. You can configure a Syslog input and create an ExtraHop index on port 514. You can then create custom dashboards. I recommend using Splunk universal forwarder dedicated for your Syslog input. You can find more information and an example the ExtraHop forum. http://bit.ly/2vDn5lB ... View more

Re: About the ExtraHop configure

by in Splunk Search
‎02-18-2020 05:00 PM
‎02-18-2020 05:00 PM
The ExtraHop Splunk App may not be what you are most interested in. If what you want is to build dashboards or reports on ExtraHop wire data, you need to configure Splunk as your Syslog SIEM entry in ExtraHop. You can then build triggers to send custom fields and values to Splunk. Check out this article on ExtraHop Forum ExtraHop To Splunk Article ... View more

Re: Processes over time

by in Splunk Search
‎11-03-2012 12:39 AM
‎11-03-2012 12:39 AM
ARe you indexing this data in Splunk? Windows or Linux? Are you using a Splunk app to collect this information? The community needs the context in order to answer the question. You might also want to look at splunkbase's Apps to see if there is something there that could solve your problem. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎10-20-2020 12:37 PM
Karma given to
View All