×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
thorntonrose
Engager
Member since: ‎03-25-2015
‎06-05-2020
Community Statistics
Posts 2
Solutions 0
Karma Given 0
Karma Received 1
Member Since ‎03-25-2015
View All

Re: Why am I unable to import a simple log file in...

by in Getting Data In
‎03-30-2015 05:27 AM
‎03-30-2015 05:27 AM
The events don't show up in the data preview. To import the file, I clicked on Add Data, selected the file, entered the line breaking and timestamp criteria, then clicked Apply. ... View more

Why am I unable to import a simple log file into S...

by in Getting Data In
‎03-26-2015 06:25 AM
1 Karma
‎03-26-2015 06:25 AM
1 Karma
I am trying to import a simple log file into Splunk. It seems to me that it should be easy, but it's not working. My log file looks like this: 2015-03-25T06:31:09.351320+00:00 nst-ms-m-mmp-dev-ui-01 process_manager[2462]: Starting up 2015-03-25T06:31:10.109330+00:00 nst-ms-m-mmp-dev-ui-01 monaco process_manager debug (periodic_task:start_task:138): Starting task pt_logging_periodic_check 2015-03-25T06:31:10.245144+00:00 nst-ms-m-mmp-dev-ui-01 monaco process_manager info Starting erlang component with PID 2462. 2015-03-25T06:31:10.245351+00:00 nst-ms-m-mmp-dev-ui-01 monaco process_manager debug (periodic_task:start_task:138): Starting task pt_force_garbage_collector ... When I import the files, I preview as "Unstructured data", set the line breaking to one event per line, and set the timestamp format to %Y-%m-%dT%H:%M:%S.%6N%z . I get no results. What am I missing? ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM
Karma from
View All