×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
daphelps
New Member
Member since: ‎05-13-2016
‎06-05-2020
Community Statistics
Posts 1
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎05-13-2016
Topics I've Started
No posts to display.
View All

Re: Are there pre-defined props and transforms.con...

by in Getting Data In
‎05-13-2016 09:14 AM
‎05-13-2016 09:14 AM
We also have EqualLogic, are capturing the syslogs, and are annoyed when some events are split in to two. Using WireShark, I captured the syslogs and looks like the "offending" characters are "\x0d\x0a", which in the ASCII world are (Carriage return)(Line feed), respectfully. I'm new to Splunk and haven't had the training. If you can develop a solution be for I, I'd love to see it. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM