Splunk Universal Forwarder not sending data to Ind...

Getting Data In

I am reading different logs from same source folder. But not all files are getting read, one stanza works other don't.
If i restart the UF, all stanzas work, but changed data is not capturing by one stanza.

files i am planning to monitor are
performance_data.log
performance_data.log.1
performance_data.log.2
performance_data.log.3

performance.log
performance.log.1
performance.log.2

SystemOut.log

my input.conf file and

[default]
host = LOCALHOST

[monitor://E:\Data\AppServer\A1\performance_data.lo*]
source=applogs
sourcetype=data_log
index=my_apps

[monitor://E:\Data\AppServer\A1\performance.lo*]
source=applogs
sourcetype=perf_log
index=my_apps

[monitor://E:\Data\logs\ImpaCT_A1\SystemOu*]
source=applogs
sourcetype=systemout_log
index=my_apps

\performance_data.lo* and \SystemOu* stanzas working fine, but performance.lo* stanza not working. only sends data when i restart the UF.
Anything i am doing wrong here ?

Get Updates on the Splunk Community!

Splunk Universal Forwarder not sending data to Indexer

Splunk AI Assistant for SPL vs. ChatGPT: Which One is Better?

Data Persistence in the OpenTelemetry Collector

Thanks for the Memories! Splunk University, .conf25, and our Community

Are you a member of the Splunk Community?

Splunk Universal Forwarder not sending data to Indexer

Splunk AI Assistant for SPL vs. ChatGPT: Which One is Better?

Data Persistence in the OpenTelemetry Collector

Thanks for the Memories! Splunk University, .conf25, and our Community