×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
filosv
Engager
Member since: ‎09-21-2022
‎05-26-2025
Community Statistics
Posts 3
Solutions 0
Karma Given 1
Karma Received 0
Member Since ‎09-21-2022
View All

Re: How to Parse and Tag custom application logs b...

by in Getting Data In
‎09-27-2022 09:41 AM
‎09-27-2022 09:41 AM
Thanks a lot for your help. Really appreciate it. Got to know how to get rid of unwanted data 😉 ... View more

Re: How to Parse and Tag custom application logs b...

by in Getting Data In
‎09-23-2022 08:21 AM
‎09-23-2022 08:21 AM
First thanks for your contribution and prompt response. As you might see on the image below there are common access log info like date, time, source IP, duration, response code, which i would like to tag on forwarder side(have no access on Splunk Server), before reaching Splunk server and get rid of unwanted info. What i have only done is adding below lines on my local inputs.conf index = .... [monitor://...] sourcetype = ... queueSize = 50MB crcSalt = <SOURCE> disabled = false ... View more

How to Parse and Tag custom application logs befor...

by in Getting Data In
‎09-21-2022 08:32 AM
‎09-21-2022 08:32 AM
Dear Splunkers, really sorry for my question , I do feel that reply would be on another thread(couldn't find it), but i try to forward custom application access logs to  Splunk, giving specific tag-name to each column let's say(i would define it by regular expression), sending only "matching" data. I 've already set inputs.conf with the file path, index and sourcetype and successfully see full logs on Splunk search but whole info on event data . Still not sure where to set appropriate configuration(props.conf, tranform.conf, ?) for getting only Invoked Service, Caller IP and Response Code let's say since we are referring to Access Logs.  ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎05-26-2025 07:01 AM
Karma given to
View All