Has any one installed Splunk UF on Kali linux and faced any issues?.We have Splunk UF(7.1.1) installed on Kali linux and monitoring a path as below.The csv file is not coming in right format from the forwarder but when tried uploading in test environment through WEB UI(Settings-->Add Data--->Upload file ) shows the correct format
Below is the path of the csv file
/home/reports/8e20594b-282a-493e-ad9a-dc69e0ac676c.csv and I am using the monitor stanza as below
[monitor:///home/reports/*.csv]
recursive = true
index = main
sourcetype = rf
initCrcLength = 1024
crcSalt =
props.conf
SHOULD_LINEMERGE=false
NO_BINARY_CHECK=true
CHARSET=UTF-8
INDEXED_EXTRACTIONS=csv
KV_MODE=none
category=Structured
disabled=false
pulldown_type=true
TIMESTAMP_FIELDS=Timestamp
HEADER_FIELD_LINE_NUMBER=1
↧
