The venerable old-skool Splunk forums are now closed. Feel free to search for old content here, but new posts are no longer supported.

Instead, please visit the thriving community at answers.splunk.com to ask and answer questions about your Splunk deployment and how to get the most out of it.

Forums: Posted by cfrln

Topics 1–20 of 137

Topic	Author	Replies	Latest Post
Inputs.conf vs. Data Inputs In: SplunkSearchAndAlert (Not tagged) Using the web interface on the indexer you only have access to the local filesystem of the indexer h...	anon1m0us Posts	5	34 months ago...
Limit access to user-machine pairs In: SplunkAdministration (Not tagged) Gerald - what about using lookups to do this then a search filter tied to a lookup field?	pgsery Posts	7	34 months ago...
Alert Escalation Model In: SplunkAdministration (Not tagged) Just a note from Splunk product management - we've long kept workflow out of scope and instead focused ...	tnine Posts	6	34 months ago...
Dashboards In: SplunkRequest Tags: global dashboard saved search Sorry for the late reply here. On 1, you can do this, you just have to go into "edit dashboard" and ...	nclarkau Posts	1	51 months ago...
bundle transforms not firing In: SplunkGeneral (Not tagged) Your stanza name in props is not the problem. You have two problems with your transforms. 1) Your DEST_KEY ...	cfrln Posts	1	57 months ago...
What are the negative aspects of forwarding raw data from distributed clients? In: SplunkAdministration (Not tagged) Nick, This is actually not a recommended configuration and requires manual effort to achieve. The ...	cfrln Posts	1	57 months ago...
Cisco ASA Firewall Logs In: SplunkGeneral Tags: Array While splunk guesses at fields in well-formatted data sources that have headers or name/value pairs ...	danfireman Posts	5	58 months ago...
What mechanism does Sendmail use for logging? In: Junk (Not tagged) Note that the logging typically ends up in /var/log/maillog on most systems though that is configurable ...	deeann Posts	3	58 months ago...
an improved permalink link In: SplunkRequest (Not tagged) Check out the cool snapshot feature Nick added for 3.0. pretty much does this.	nclarkau Posts	6	60 months ago...
Correlating Text/CSV & Log Files In: SplunkGeneral (Not tagged) George, My approach would probably be to write a perl or shell script to trigger Splunk's CLI to ...	george_park Posts	1	64 months ago...
JMX/JMS In: SplunkGeneral (Not tagged) Splunk doesn't have anything on the java side to directly subscribe to JMS or JMX, but as Matt pointed ...	paultinson Posts	3	69 months ago...
JMX/JMS In: SplunkAdministration (Not tagged) Splunk doesn't have anything on the java side to directly subscribe to JMS or JMX, but as Matt pointed ...	m@ Posts	5	69 months ago...
Splunk on Gentoo In: SplunkGeneral (Not tagged) Lorimer, We will be posting tarball versions of 2.1 in the next few days so you may want to try those. ...	tholmes@mcaschool.net Posts	9	69 months ago...
Splunk used in a remote support/troubleshooting capacity? In: SplunkGeneral (Not tagged) We definitely designed Splunk with this kind of ad hoc support use case in mind. I know some folks are ...	beaugunderson Posts	1	69 months ago...
Splunk used in a remote support/troubleshooting capacity? In: SplunkGeneral (Not tagged) We definitely designed Splunk with this kind of ad hoc support use case in mind. I know some folks are ...	cfrln Posts	1	69 months ago...
batch import returning an error In: SplunkGeneral (Not tagged) A few updates here for anyone reading this in September and beyond. Our 2.1 release includes a massively ...	wmchurch Posts	11	70 months ago...
Why does Splunk categorize these as 2 different event types In: SplunkGeneral (Not tagged) Ramdas, This does indeed seem like a bug. Please email this sample to support@splunk.com. Anyone ...	ramdas Posts	3	70 months ago...
How to identify new event types through a query In: SplunkGeneral (Not tagged) Unexpected does not currently consider event type. It is strictly based on frequency of values in segments ... There is no way to find new event types per se. We are considering something like this for a later release. ...	ramdas Posts	3	70 months ago...
How to identify new event types through a query In: SplunkSearchAndAlert (Not tagged) There is no way to find new event types per se. We are considering something like this for a later release. ...	cfrln Posts	1	70 months ago...
deployment stratergy In: SplunkGeneral (Not tagged) Ric, Splunk Free Server can be used to forward data to Splunk Professional. Also, if you purchase ...	ric Posts	1	71 months ago...

1 2 3 4 5 6 7 Next »

Forums: Posted by cfrln

Description:

Permalink:

Splunk.com

Product:

Solutions:

Industries:

Partners:

About_us:

Support:

Services:

Resources:

Download