Drew Gibson
Handling HTTP Event Collector (HEC) Content-Length too large errors without pulling your hair out
Answer for dealing with HTTP Event Collector (HEC) error message 413 content too large: reset configurable pre-defined limit for max content using limits.conf.
Sending binary data to Splunk and preprocessing it
Send data, text or binary, to Splunk with PDI Protocol Data Inputs App; choose variety of protocols-HTTP POST, UDP, SockJS, TCP & more & binary data payload.
Best Practices in Protecting Splunk Enterprise
Customers use Splunk & Splunkbase Apps for operational visibility to drive business results. Protect admin access, change passwords and define roles carefully.
Eureka! Extracting key-value pairs from JSON fields
Use of Splunk logging driver & HEC (HTTP Event Collector) grows w/ JSON-JavaScript Object Notation; Find answers on extracting key-value pairs from JSON fields.
Spotting the Adversary… with Splunk
Wondering how to find the baddies in huge volumes of data? Work with Splunk & Windows event Log Monitoring – refer to table of event codes in NSA paper.
Build the Foundation: Introducing SignalFx Fundamentals Training
Build the Foundation: Introducing SignalFx Fundamentals Training
Astronomy Part 3: Splunk, Megastructures, and ITSI
See how Splunk IT Service Intelligence-ITSI-can monitor brightness of Milky Way 100 billion stars & provide you with real-time insights, swim lanes, metrics.
Configuring Nginx Load Balancer For The HTTP Event Collector
Send data to Splunk w/o a forwarder using HEC (HTTP Event Collector); Perfect for log data over HTTP or IoT. Install Nginx with HTTPS support, then configure.
