Learning, learning, learning . . . Our Splunk "expert" is gone, and the non-programmer gets to learn the task! How do you spell SPLUNK?
The dojo of Splunk. Learn, share, teach, mentor.
Videos
Latest Activity
Michael Wilde commented on Michael Wilde's video
Sure... When you do group mapping, map them to groups that don't have the domain admins in them. I have a separate OU=Groups that has "Splunk Users, Splunk Admins, Splunk Power Users" as group names, and specific users…
Mike Hartford commented on Michael Wilde's video
I want to give LDAP access to my splunk servcie but I don't want the LDAP users to have admin capabilitys in Splunk. Can I keep the domain admins out of Splunk if I have LDAP authentication???
Mike Hartford left a comment for Jonathan Hawes
Helow Jonathan,
Glad to have another Splunker. I've been useing Splunk for 2 years and am hooked. I leared how to spell splunk and | transaction too. you'll learn that one soon.
Go over to Splunk…
Mike Hartford commented on Mike Hartford's blog post 'tees for the holy day'
Holy Batskins Ninja, zzzzzwap zgruppp kapow a hidden stash, how great is that!!!!
The team that found them must have special bat senses and highly tooned Splunking skills
I like to wear Extra Lovable…
Alexander Szoenyi's Page
Gifts Received
Alexander Szoenyi has not received any gifts yet
Latest Activity
Remote System Monitoring (without using a Forwarder from Splunk) ,but works with the *nix App
Hello,If you can not install a Splunk Forwarder at your *NIX Systems, but you want to monitor this systems andinclude this systems in your Splunk *NIX App, read this Document.Monitor your NIX Systemes with no Forwarder.pdfregardsAlexander SzoenyiSee More
Blog post by Alexander Szoenyi
How to build a simple App in Splunk (Example with Snort)
Hello,To give you a great start with Splunk, i hope i can help you with this short description, to build your own simple Apps.How to build a simple App for Splunk.pdfHave Fun ;-))best regardsAlexanderSee More
Blog post by Alexander Szoenyi
Install Scenarios for Splunk
Hello,In the Forum are so many questions about installing Splunk in a environment.I have make a PPT for typical Scenarios for this questions.Splunk install Scenarios.pdfI hope it will be usefull.regards AlexanderSee More
Blog post by Alexander Szoenyi
Alexander Szoenyi replied to yanu pratomo's discussion 'take log windows to splunk without forwarder'
Hello,
1. You can install so many FW you need, it is not a license question, you are only license Data/day for indexing at the Splunk Indexer.
2. You new scenario is correct.
3. If the customer do not want to invest in a new System for MS FW, use…
Alexander Szoenyi replied to Hot Splunk's discussion 'Deployment on Linux / *NIX'
Hello,
What Linux do you have ?
If you have a rpm or dep you can make a remote install script for that.
example: rpm -i ftp://xx.xx.xx.xx/splunk.rpm
or dpkg -i ftp://xx.xx.xx.xx/splunk.deb
Please read also the documentation for ./splunk help
Or…
Alexander Szoenyi replied to yanu pratomo's discussion 'take log windows to splunk without forwarder'
Hello,
For your POC, install a Splunk FW on a MS OS System and configure evt/evtx, WMI and ADMON.EXE.
you need for this max. 1 hour.
Install on the Splunk Indexer the Windows APP.
With this little tasks your POC is working ;-)))
regards Alexander
Alexander Szoenyi left a comment for Hot Splunk
IF you need my contact data ask Jeremy Horton ;-)))
Alexander Szoenyi replied to Hot Splunk's discussion 'Deployment on Linux / *NIX'
Hello,
Please read the online Documation about deployment server.
http://www.splunk.com/base/Documentation/latest/Admin/Aboutdeploymentserver
regards Alexander
Alexander Szoenyi replied to yanu pratomo's discussion 'take log windows to splunk without forwarder'
Hello,
1. You can export the evt and evtx, only to a Splunk with MS OS, because the evt and evtx are binarys and only on Windows you can transform this.
2. For WMI you need a Splunk Indexer with MS OS or a Splunk FW on MS OS, WMI works only on MS…
Alexander Szoenyi replied to Dave P's discussion 'Splunk skipping input files & Order of precedence'
Hello,
Point 1
Go to the Search App -> Status -> Inputs Activity.
There you can find the "Most recently ignored files".
or use this search
index="_internal" source="*splunkd.log" earliest=-24h…
Alexander Szoenyi updated their profile
Alexander Szoenyi added the App Gmail Chat
Alexander Szoenyi updated their profile photo
Profile Information
- Are you an existing splunk user?
- Licensed
- What do you do for your day job?
- Business Development Manager
- Web / Blog Address
- http://www.spp.at/splunk/
SPP Splunk Reseller, Consulting and Development
SPP is a Austria Company, based in Vienna.
We over Services, Consulting, Development and License for Splunk in
Austria, Hungary, Czech Republic, Slovakia, Slovenia, Ukraine and Rumania .
http://www.spp.at/splunk
mailto:a.szoenyi@spp.at
We over Services, Consulting, Development and License for Splunk in
Austria, Hungary, Czech Republic, Slovakia, Slovenia, Ukraine and Rumania .
http://www.spp.at/splunk
mailto:a.szoenyi@spp.at
Alexander Szoenyi's Blog
Remote System Monitoring (without using a Forwarder from Splunk) ,but works with the *nix App
Hello,
Continue
If you can not install a Splunk Forwarder at your *NIX Systems, but you want to monitor this systems and
include this systems in your Splunk *NIX App, read this Document.
Posted on April 22, 2010 at 4:23am
How to build a simple App in Splunk (Example with Snort)
Hello,
To give you a great start with Splunk, i hope i can help you with this short description, to build your own simple Apps.
How to build a simple App for Splunk.pdf
Have Fun ;-))
best regards
Alexander
To give you a great start with Splunk, i hope i can help you with this short description, to build your own simple Apps.
How to build a simple App for Splunk.pdf
Have Fun ;-))
best regards
Alexander
Posted on March 25, 2010 at 4:18am
Install Scenarios for Splunk
Hello,
In the Forum are so many questions about installing Splunk in a environment.
I have make a PPT for typical Scenarios for this questions.
Splunk install Scenarios.pdf
I hope it will be usefull.
regards Alexander
In the Forum are so many questions about installing Splunk in a environment.
I have make a PPT for typical Scenarios for this questions.
Splunk install Scenarios.pdf
I hope it will be usefull.
regards Alexander
Posted on February 4, 2010 at 1:19am
Comment Wall
- No comments yet!
© 2012 Created by Michael Wilde.
