cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
ozatsepin
Engager
Member since: ‎08-20-2018
‎06-05-2020
Community Statistics
Posts 2
Solutions 0
Karma Given 0
Karma Received 1
Member Since ‎08-20-2018
Topics I've Started
No posts to display.
View All

Re: Remove ::ffff: from logs

by in Getting Data In
‎11-30-2018 01:13 AM
1 Karma
‎11-30-2018 01:13 AM
1 Karma
On Splunk Enterprise 7.2.1 with Splunk Add-on for Microsoft Windows 5.0.1 I solved problem in the following way: Create file $SPLUNK_HOME/etc/apps/Splunk_TA_windows/local/transforms.conf. [Client_Address_as_src] SOURCE_KEY = Client_Address REGEX = ([\\]+)?([^f:\n][^-].*) FORMAT = src::"$2" [Client_Address_as_src_ip] SOURCE_KEY = Client_Address REGEX = ([\\]+)?([^f:\n][^-].*) FORMAT = src_ip::"$2" ... View more

Re: What "Log source type" and "index" shall we us...

by in All Apps and Add-ons
‎08-20-2018 12:14 AM
‎08-20-2018 12:14 AM
What app you plan use for analyze syslog from trapx? If you will use https://splunkbase.splunk.com/app/4048/ then sourcetype=trapx:syslog, index=trapx. But you can change this in configuration files. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM
Karma from
View All