Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Getting Data In
Getting Data In
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | I created an App and in my inputs.conf have it calling a Windows batch file to execute an .exe, but the exe seems tha... by jstockton New Member in Getting Data In 04-21-2011 0 7 | 0 | 7 | |
| | Splunk New User here. I am having trouble getting forwarding and receiving working to any degree. On the receiver I... by bearrito New Member in Getting Data In 04-21-2011 0 2 | 0 | 2 | |
| | I have a script that queries a database and outputs the results to a csv file. When the file is finished being writt... by carmackd Communicator in Getting Data In 04-20-2011 1 1 | 1 | 1 | |
| | Hello, When I stream UDP data to Splunk using a script to pipe Apache access logs via scripts. The splunk server co... by williamsweat Path Finder in Getting Data In 04-20-2011 1 4 | 1 | 4 | |
| | Hi, I have following inputs.conf [script://$SPLUNK_HOME/etc/apps/appa/bin/script1.sh] index = index1 sourcetype = s... by manuarora Explorer in Getting Data In 04-20-2011 0 4 | 0 | 4 | |
 | I noticed support for AIX 6.1 as of Splunk 4.2. Great! Then I noticed support for AIX 6.1 taken away with Splunk 4.... by Branden Builder in Getting Data In 04-20-2011 0 2 | 0 | 2 | |
| | I read a post on the site describing how an optimum custom log format for Splunk would take the form: <timestamp> ke... by travispowell Path Finder in Getting Data In 04-19-2011 0 3 | 0 | 3 | |
| | I believe that if a directory mentioned in a monitor statement is not there when splunk starts up, the directory will... by vbumgarner Contributor in Getting Data In 04-19-2011 0 1 | 0 | 1 | |
| | If I have a 4.2 Universal Forwarder (Windows) installed on a machine that was migrated from 4.1.x and still has the o... by trevorford New Member in Getting Data In 04-19-2011 0 1 | 0 | 1 | |
| | My props.conf has: [server] MAX_TIMESTAMP_LOOKAHEAD = 0 SHOULD_LINEMERGE = true #BREAK_ONLY_BEFORE_DATE = true BREAK... by willthames Path Finder in Getting Data In 04-19-2011 2 7 | 2 | 7 | |
| | I have a single source and my main config is based on overided sourcetypes. So is it save to build all configs (FIELD... by Starlette Contributor in Getting Data In 04-18-2011 0 2 | 0 | 2 | |
| | Hi, We are indexing a substantial number of XML files. These files have between 30% and 50% of white space that can ... by oscargarcia Path Finder in Getting Data In 04-15-2011 0 4 | 0 | 4 | |
| | I have the following confs inputs: [monitor:///opt/logs/\*.prd/\*/\*EndAudit.csv] disable = false index = foo pro... by bmayer00 Engager in Getting Data In 04-15-2011 0 1 | 0 | 1 | |
| | I am attempting to bring data together from servers sitting in GMT in line with the logs from servers sitting in CMT,... by MasterOogway Communicator in Getting Data In 04-15-2011 1 3 | 1 | 3 | |
| | I have one splunk indexer that receives data from a variety of hosts. I want to also forward the data coming in from ... by brianm1002 New Member in Getting Data In 04-15-2011 0 1 | 0 | 1 | |
| | Hi, We have a system with many indexed small xml files. Is it possible to have a link/view that displays the full co... by oscargarcia Path Finder in Getting Data In 04-15-2011 0 2 | 0 | 2 | |
| | Hi I'm forwarding logs into Splunk from a database trace file via monitor through a LWF. Example file content is a... by shanleyj Explorer in Getting Data In 04-15-2011 0 2 | 0 | 2 | |
| | I need to figure out how I can gracefully revise data that's already been indexed. My use case is this: We are monit... by David Splunk Employee  in Getting Data In 04-14-2011 1 2 | 1 | 2 | |
| | Can Splunk universal forwarders handle and forward newly created log files? I would like to forward data as raw logs ... by suhprano Path Finder in Getting Data In 04-14-2011 2 1 | 2 | 1 | |
| | I think i'm going mad. I'm a brand new user who's eval-ing splunk, seems powerful but i'd like to get all my logs in... by brandnew_users Explorer in Getting Data In 04-14-2011 0 3 | 0 | 3 | |
| | I know there are similar questions, but not exactly and the answers don't seem to apply. Also, I'm a noob so forgive... by charlesm Explorer in Getting Data In 04-14-2011 0 3 | 0 | 3 | |
| | I need to figure mine collection of universal forwarders to sent information to distinct tcp ports... Basicaly: ... by mamaral Path Finder in Getting Data In 04-14-2011 0 2 | 0 | 2 | |
| | Hello, I am very new to Splunk. I have got it up and running on a Linux Box and analyzing some IIS logs and everythi... by mdumka Engager in Getting Data In 04-13-2011 1 2 | 1 | 2 | |
| | Hello. I'm having an issue when indexing a csv file. The format of the data is like this. Employee,Date,Dept,Hours,H... by RicoSuave Builder in Getting Data In 04-13-2011 0 5 | 0 | 5 | |
| | I had splunk running on a windows machine with my cisco asa 5505 sending syslogs too it and I was able to see destina... by terryblair New Member in Getting Data In 04-13-2011 0 1 | 0 | 1 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Top Labels
-
add-on
1 -
administration
13 -
blacklist
92 -
configuration
32 -
CSV
208 -
data
480 -
development
5 -
eval
2 -
field extraction
557 -
fields
5 -
forwarder
1 -
forwarder management
3 -
heavy
1 -
heavy forwarder
946 -
host
156 -
HTTP Event Collector
439 -
index
539 -
indexer
705 -
indexing performance
1 -
inputs.conf
830 -
installation
5 -
intermediate forwarder
143 -
introduction
3 -
JSON
392 -
kvstore
1 -
Linux
453 -
login
1 -
Mac
30 -
metadata
1 -
metrics
2 -
modular input
191 -
monitor
309 -
monitoring console
1 -
other
55 -
proactive Splunk component monitoring
2 -
props.conf
979 -
regex
5 -
saved search
2 -
scripted input
244 -
search
1 -
search head
2 -
source
291 -
sourcetype
494 -
Splunk Enterprise
1 -
Splunk Investigate
1 -
splunk-assist
2 -
subsearch
1 -
syslog
319 -
time
204 -
transforms.conf
577 -
troubleshooting
15 -
universal forwarder
1,552 -
using Enterprise Security
3 -
using Splunk Cloud
4 -
using Splunk Enterprise
16 -
whitelist
60 -
Windows
587 -
XML
90
- « Previous
- Next »
Get Updates on the Splunk Community!
App Platform's 2025 Year in Review: A Year of Innovation, Growth, and Community
As we step into 2026, it’s the perfect moment to reflect on what an extraordinary year 2025 was for the Splunk ...
Operationalizing Entity Risk Score with Enterprise Security 8.3+
Overview
Enterprise Security 8.3 introduces a powerful new feature called “Entity Risk Scoring” (ERS) for ...
Unlock Database Monitoring with Splunk Observability Cloud
In today’s fast-paced digital landscape, even minor database slowdowns can disrupt user experiences and ...
