Getting Data In
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Spool vs OneShot

ebwong
Loves-to-Learn
‎10-27-2021 07:18 AM

What is the difference between using Spool vs OneShot CLI commands?   Unfortunately I'm unable to install UFs or directly poll the logs and need to index tar.gz.   Is there a performance benefit?  Does using spool allow the indexer Splunk server to index the data in the background?

0 Karma
Reply

ebwong
Loves-to-Learn
‎10-27-2021 11:18 AM

@isoutamo Thanks for the links to documentation, I'm still not entirely sure in what cases one is better than the other.

Tags (1)
0 Karma
Reply
Get Updates on the Splunk Community!

Upcoming Community Maintenance: 10/28

Howdy folks, just popping in to let you know that the Splunk Community site will be in read-only mode ...

Best Practices for Metrics Pipeline Management

We can’t guarantee the health of our services or a great user experience without data from our applications. ...

New Case Study: How LSU’s Student-Powered SOCs and Splunk Are Shaping the Future of ...

Louisiana State University (LSU) is shaping the next generation of cybersecurity professionals through its ...