Thread Info | |||||
---|---|---|---|---|---|
Hi people
I have syslog out put like that :
ifIndex 1212, ifAdminStatus up(1), ifOperStatus up(1), ifName ge-1/...
by
sja
New Member
in
Getting Data In
08-28-2012
|
0
|
2
| |||
I'm running Splunk on RHEL, and using the Splunk App for Linux and Unix with the Universal Forwarder. I'm getting dup...
by
chriscolinjacks
New Member
in
Getting Data In
01-31-2012
|
0
|
2
| |||
Hello out there!
I dont know if i am doing something wrong. So maybe somebody could help me with this question.
...
by
flanghof
New Member
in
Getting Data In
08-28-2012
|
0
|
1
| |||
Hi,
I want to create an alert for Forwarder which sending more than 2 GB / day. I already found this
Community:...
by
nebel
Communicator
in
Getting Data In
08-27-2012
|
0
|
1
| |||
Hello,
Is there a performance guide for the universal forwarder (v 4.3.3)?
The indexer is running at 2 events p...
by
wsweat
Explorer
in
Getting Data In
08-25-2012
|
0
|
2
| |||
Hello,
Using the SEDCMD (props.conf), I want to replace a char string '#11' with a tab. However, when I use:
SE...
by
wsweat
Explorer
in
Getting Data In
08-24-2012
|
1
|
3
| |||
Hi,
Sorry new to this.
I have downloaded splunk for Mac which I will install on one of our 10.6 servers. The re...
by
avvio
Explorer
in
Getting Data In
02-29-2012
|
2
|
9
| |||
Testing Splunk by devouring the syslog from my router with Tomato firmware installed. Is there a way to have Splunk d...
by
jvader
New Member
in
Getting Data In
08-23-2012
|
0
|
4
| |||
I want to do something like this:
# inputs.conf
[monitor://$SPLUNK_HOME/etc/apps/myapp/tmp]
And/or:
# props...
by
dbryan
Path Finder
in
Getting Data In
08-23-2012
|
0
|
1
| |||
I have three CSV files. One is a list of all customers that have logged into my system in the past 24 hours. The seco...
by
kmattern
Builder
in
Getting Data In
08-21-2012
|
1
|
5
| |||
Hi
I have a Universal forwarder running on a host with the network configured as dhcp. In the etc/system/local/inp...
by
vitki
Explorer
in
Getting Data In
08-22-2012
|
0
|
1
| |||
I have CAS, Hub and MBX logs (Application, System and Event Logs) which I got from a Microsoft Exchange server. Can I...
by
hiteshkanchan
Communicator
in
Getting Data In
08-22-2012
|
0
|
4
| |||
Hey Folks,
I'm trying to get the reputation check script running on a mail server at the moment and I'm running in...
by
michaeloleary
Path Finder
in
Getting Data In
08-15-2012
|
0
|
7
| |||
I have multiple splunk search heads setup for two separate organizations we help support. Staff who operate in both o...
by
TobiasBoone
Communicator
in
Getting Data In
08-22-2012
|
0
|
1
| |||
Hi there,
is there a way to stop a Splunk Forwarder when its sending more then for instance 2 GB ? From a SearchHe...
by
nebel
Communicator
in
Getting Data In
08-22-2012
|
0
|
1
| |||
Instead of my host saying host=157.38.2.1 how would i get it to say host=(whatever is in the message)? We want it to ...
by
Michael_Schyma1
Contributor
in
Getting Data In
08-21-2012
|
0
|
8
| |||
I'm trying to install and configure NET-SNMP to write log file and have Splunk monitor on it. But when I register snm...
by
cqian02
Explorer
in
Getting Data In
08-21-2012
|
1
|
2
| |||
The add-on is installed correctly and functioning.
Data Input is defined as:
UDP/514, Source Type: cisco_asa, I...
by
quesse2
Explorer
in
Getting Data In
08-20-2012
|
1
|
3
| |||
Hi,
I've RTFM many times but can't seem to figure this out.. I am creating a new field ("ip") based on a simple se...
by
sthomas
Explorer
in
Getting Data In
08-21-2012
|
1
|
3
| |||
On the splunk dev rest api guide it says that splunk queries sent through curl must first be url encoded.
http://d...
by
obesechicken13
Explorer
in
Getting Data In
08-20-2012
|
1
|
1
| |||
I'm new to this wonderful app, so pardon my inexperience if this is easy...I have a very long search string, but I'd ...
by
holtb
Explorer
in
Getting Data In
08-20-2012
|
1
|
1
| |||
Background: Active and Standby server with key directories replicated periodically (every 5 mins) via rsync, includin...
by
nvonkorff
Path Finder
in
Getting Data In
08-19-2012
|
0
|
4
| |||
Hi,
I must confess I'm still not understanding how wildcards work in inputs.conf. I've got a clustered application...
by
echalex
Builder
in
Getting Data In
04-24-2012
|
0
|
3
| |||
How would i configure Splunk to input all FTP logs from my Splunk server? Anybody have any suggestions on what they d...
by
Michael_Schyma1
Contributor
in
Getting Data In
08-17-2012
|
0
|
3
| |||
after I install the GEOIP from http://www.maxmind.com/download/geoip/api/c/GeoIP.tar.gz I chose using C API in splunk...
by
perlish
Communicator
in
Getting Data In
08-12-2012
|
0
|
6
|