Thread Info | |||||
---|---|---|---|---|---|
I installed 4.2 splunk, and made it a forwarder (not lightweight or universal forwarder) Because I want to do some fi...
by
mataharry
Communicator
in
Getting Data In
03-22-2011
|
3
|
7
| |||
I'm trying to change sinkhole directory and configure it so that it will delete files only after 5 days or so. Is the...
by
giovere
Path Finder
in
Getting Data In
09-02-2011
|
1
|
5
| |||
I have been monitoring a log file via file monitor input.I disabled the monitoring temporary for a few days but when ...
by
remy06
Contributor
in
Getting Data In
08-10-2011
|
0
|
3
| |||
If I define this in .../local/indexes.conf
[default] coldToFrozenDir = $SPLUNK_DB/frozenArchive
Will Splunk r...
by
alexander_lucas
Explorer
in
Getting Data In
09-02-2011
|
1
|
3
| |||
Dears,
Are there separate fields for: Event received time (when event was received by Splunk); and Parsed (extract...
by
alexander_lucas
Explorer
in
Getting Data In
09-05-2011
|
1
|
3
| |||
I'm thinking about adding certain application server logs to our Splunk environment. At first, it seemed simple: I wo...
by
Branden
Builder
in
Getting Data In
09-05-2011
|
0
|
4
| |||
If I have a basic input which sets the sourcetype, configuring a timezone offset works great:
In inputs.conf:
[...
by
hulahoop
Splunk Employee
in
Getting Data In
03-20-2010
|
3
|
10
| |||
Forwarder is in US/Pacific and splunk indexer is in EST. Where do I need to set the timezone so _time has the correct...
by
jhallman
Explorer
in
Getting Data In
08-23-2011
|
0
|
3
| |||
We have an environment with a mix of light/heavy forwarders, a deployment server, an indexer, and multiple apps. If I...
by
sseekamp
Explorer
in
Getting Data In
08-30-2011
|
0
|
2
| |||
Hi -
I'm embarking on a re-organization in my splunk environment. I've come into possession of a couple big x86 b...
by
Steve_Litras
Path Finder
in
Getting Data In
08-31-2011
|
0
|
2
| |||
Host does not get properly extracted for linux_secure (I get the syslog server hostname instead)
I have tried many...
by
alexander_lucas
Explorer
in
Getting Data In
09-02-2011
|
1
|
2
| |||
I have a host that is sending syslog entries with a couple of different formats. I have resolved how to roll multilin...
by
cbdick
Explorer
in
Getting Data In
09-02-2011
|
1
|
1
| |||
We use splunk with a single UDP syslog input.
Between July 13 and 14, we have found that after a certain set of ev...
by
cbdick
Explorer
in
Getting Data In
08-31-2011
|
0
|
1
| |||
Hey everyone. I am trying to add a time-format to my props.conf file. The source is a csv file containing multiple ti...
by
msarro
Builder
in
Getting Data In
08-31-2011
|
0
|
1
| |||
Splunk Team,
I'm looking for log management/application profiling from Cisco ASA Firewall. On Firewall, syslog-ud...
by
rkarnani
Engager
in
Getting Data In
08-30-2011
|
2
|
3
| |||
I'm currently in the process of evaluating Splunk for active directory monitoring. What I'm interested in, is using i...
by
stefstef
Engager
in
Getting Data In
08-24-2011
|
1
|
3
| |||
Hi guys.
I want to push error logs from a silverlight app to our splunk installation. I'm using the splunk RESTful...
by
liviu_trifoi
Engager
in
Getting Data In
08-25-2011
|
1
|
3
| |||
I am trying to remove unwanted input source files. Tried clean command
Stop splunk splunk clean filename
Does n...
by
pjmenon
Explorer
in
Getting Data In
06-21-2010
|
0
|
6
| |||
In my inputs.conf, I have:
[monitor://cust/http*/web-*/var/log/modsec-audit.log*]
[monitor://cust/http*/web-*/va...
by
zliu
Splunk Employee
in
Getting Data In
08-26-2011
|
2
|
1
| |||
After reading the docs and looking in forums, I thought I had a understanding of monitor and what it does...I guess n...
by
kenison
New Member
in
Getting Data In
08-26-2011
|
0
|
2
| |||
Hello,
Is it possible to forward file attachments between Splunks?
by
samiomer
Path Finder
in
Getting Data In
08-24-2011
|
1
|
4
| |||
Is there a version for Windows Core or instructions to install on Windows Core (No GUI)?
by
wwillsey
New Member
in
Getting Data In
07-15-2010
|
0
|
5
| |||
Greetings. I am using multiple sourcetypes in a query that I am working with. If you open a search using something li...
by
msarro
Builder
in
Getting Data In
08-25-2011
|
2
|
2
| |||
We're noticing that all of our Windows 2008 SP1 machines stop forwarding events from the security event log over the ...
by
chadroberts
Path Finder
in
Getting Data In
08-22-2011
|
0
|
1
| |||
Hi all!
I'm a little bit upset with next problem...
If I run some script within splunk (powershell, python, etc...
by
Vladimir
Path Finder
in
Getting Data In
08-24-2011
|
0
|
3
|