Thread Info | |||||
---|---|---|---|---|---|
I downloaded and installed the Cisco Firewall Add-On and it properly renamed the sourcetype of my ASA, FWSM and PIX f...
by
johndursplk
Engager
in
Getting Data In
06-11-2010
|
1
|
3
| |||
i need to index a bunch of xml logs that have an extension of .stats
i was able to just upload one of them from th...
by
jsharvina
New Member
in
Getting Data In
06-15-2010
|
0
|
3
| |||
I currently have a 1GB/day Splunk license and I need to have it split up into a smaller 200MB, 300MB, and a 500MB lic...
by
maverick
Splunk Employee
in
Getting Data In
06-16-2010
|
1
|
1
| |||
Do you think splunk could scale to 1 petabyte a day?
What is the amount indexed by the largest installation out th...
by
oreoshake
Communicator
in
Getting Data In
06-14-2010
|
1
|
2
| |||
Here's one possible solution I think would work if the there are constant events coming in from each source.
searc...
by
dinh
Path Finder
in
Getting Data In
01-20-2010
|
5
|
6
| |||
I followed the directions for configuring custom timestamps for events with multiple timestamps but I am not getting ...
by
mawwx3
Explorer
in
Getting Data In
06-14-2010
|
1
|
6
| |||
When i try to train splunk to automatically recognize files of a given type, I get the following:
# $SPLUNK_HOME/b...
by
jrodman
Splunk Employee
in
Getting Data In
06-14-2010
|
0
|
1
| |||
If I specify pollPeriod parameter for fschange, is it supposed to generate an event each time it checks file for chan...
by
kkuminsky
Path Finder
in
Getting Data In
06-14-2010
|
0
|
2
| |||
I'm looking to upgrade my splunk forwarder from a 32-bit Windows version to the 64-bit windows version. Can I simply ...
by
Lowell
Super Champion
in
Getting Data In
05-13-2010
|
1
|
1
| |||
Hi,
Is there a way to configure how Splunk get the data from WMI for event logs, ex: how often Splunk check the ho...
by
phoenixsecure
Engager
in
Getting Data In
04-30-2010
|
1
|
2
| |||
Hi,
I defined over 60 hosts in Remote Windows Event log manager on splunk but when I go back in the manager I only...
by
phoenixsecure
Engager
in
Getting Data In
04-30-2010
|
1
|
1
| |||
If have 100 desktops i want to collect a few statistics from.. say every 30s... does Splunk make 100 queries every 30...
by
Michael_Wilde
Splunk Employee
in
Getting Data In
05-18-2010
|
2
|
1
| |||
Hey guys,
I currently have a 3-server architecture (2 central indexers with 1 search head). We are looking to hav...
by
balbano
Contributor
in
Getting Data In
05-21-2010
|
1
|
6
| |||
I have 10's of thousands of files(tarballs) i want to monitor via batch/sinkhole.
[batch:///var/log/archived_files...
by
Chris_R_
Splunk Employee
in
Getting Data In
06-03-2010
|
1
|
2
| |||
Hi,
At the moment we have had number Ironport appliances deployed but their log files being uploaded to FTP server...
by
thinguyen
Engager
in
Getting Data In
04-20-2010
|
2
|
3
| |||
I run a report every 24 hours, and I want to make the .csv results file available to multiple users afterwards. Can I...
by
Mick
Splunk Employee
in
Getting Data In
04-13-2010
|
1
|
3
| |||
Trying to monitor changes to configuration files.
Followed this article: http://www.splunk.com/base/Documentation/...
by
kkuminsky
Path Finder
in
Getting Data In
06-09-2010
|
1
|
4
| |||
I have splunk hosted on a win2k machine with IIS7.5 running. How do I configure splunk so I can access it from my loc...
by
robvolk
New Member
in
Getting Data In
06-08-2010
|
0
|
4
| |||
We have users that are in another timezone (30 minutes off the servers) and events in their flashtimeline are appeari...
by
nclarkau
Path Finder
in
Getting Data In
06-09-2010
|
0
|
2
| |||
How do I install and configure the Cisco MARS archive add-on on Splunkbase?
by
Will_Hayes
Splunk Employee
in
Getting Data In
06-06-2010
|
0
|
3
| |||
Hi, can anyone tell me if I could do this using Splunk: Log from particular host to a particular directory, Archive l...
by
uber_cookie
New Member
in
Getting Data In
06-08-2010
|
0
|
1
| |||
Does anyone have experience integrating splunk with a hierarchal storage management system (like AMASS, Legato, or Ti...
by
dwaddle
SplunkTrust
in
Getting Data In
06-07-2010
|
1
|
1
| |||
For some reason, looks like 2-3 of my indexes have stopped indexing. The monitor point to the indexes is pointed to d...
by
balbano
Contributor
in
Getting Data In
06-04-2010
|
0
|
3
| |||
I want a search that will tell me the total throughput of my indexing server, and then setup a notification if that t...
by
seanlon11
Path Finder
in
Getting Data In
05-28-2010
|
0
|
8
| |||
I would like to splunk TripWire events so that I can search and correlate them with my other security, syslog, and ap...
by
maverick
Splunk Employee
in
Getting Data In
06-07-2010
|
0
|
1
|