Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Getting Data In
Getting Data In
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | I only want to index the last 365 days of data. Can this be done in Splunk 4.1? Any data older than one year should b... by coryjackson New Member in Getting Data In 03-07-2011 0 2 | 0 | 2 | |
| | I have one Splunk receiver set up and several forwarders (forwarders using free version). About 9 of my hosts are li... by lmalhoit Explorer in Getting Data In 03-07-2011 0 4 | 0 | 4 | |
| | Has anybody dealt with splunking Windows Robocopy.exe logs? I'm about to dive into it, and am looking for prior art.... by anewell Path Finder in Getting Data In 03-06-2011 0 1 | 0 | 1 | |
| | Hello folks, I'm trying to puzzle out getting around SPL-34965 (WMI not load balancing), not inundating a single ind... by hacktastic Path Finder in Getting Data In 03-04-2011 0 1 | 0 | 1 | |
| | I'm indexing a CSV file and I just can't get Splunk to extract any fields or apply the proper sourcetype to the event... by erga00 Path Finder in Getting Data In 03-04-2011 3 7 | 3 | 7 | |
| | Hello, I am trying to pick up to files in specific directories under different sourectypes. [monitor:///app/ems-s... by Hazel Communicator in Getting Data In 03-04-2011 0 10 | 0 | 10 | |
| | We want to write an program to gather logging information from our HP NonStop system log files, both OSS and Guardian... by ticsoftware New Member in Getting Data In 03-04-2011 0 2 | 0 | 2 | |
| | Hi, I have a sourcetype where i defined the field names in the transforms.conf Transforms.conf [my_parse] DELIMS ... by cramasta Builder in Getting Data In 03-03-2011 0 4 | 0 | 4 | |
| | Hi, How can I delete old hosts from web interface (all indexed data) in search window? Thanks in advance by mudricd Explorer in Getting Data In 03-02-2011 2 4 | 2 | 4 | |
| | I have some firewalls and stuff like that send logs to my Splunk server (using normal syslog at the moment). For now ... by fisk12 Path Finder in Getting Data In 03-02-2011 1 3 | 1 | 3 | |
| | How can I proactively monitor my Splunk indexes to make sure they are still indexing? I have an SNMP monitoring appl... by gharpe2 Explorer in Getting Data In 03-02-2011 1 1 | 1 | 1 | |
| | Hello Im looking to do some stats on the traffic to my companys webserver (apache). Im using splunk as a lightforward... by fisk12 Path Finder in Getting Data In 03-01-2011 0 5 | 0 | 5 | |
| | Is there anyway to ignore the events time stamp, and set it to the current system time (at the event's index time)? ... by carmackd Communicator in Getting Data In 03-01-2011 2 5 | 2 | 5 | |
| | I have UDP 514 input data configured for syslog but somehow if i select sourcetype From list : syslog and save it a... by satishp Explorer in Getting Data In 03-01-2011 0 1 | 0 | 1 | |
| | Hi I'm new to Splunk and the tools looks very interesting - Currently Evaluating to replace ORiON SolarWinds APM. Ho... by staces65 Engager in Getting Data In 03-01-2011 2 2 | 2 | 2 | |
| | I'm trying to build a search on windows event logs, that will exclude activity by the real time antivirus scanner and... by udiggity New Member in Getting Data In 03-01-2011 0 5 | 0 | 5 | |
| | Hello, How to enable WMI:LocalNetwork? Where is the correct config file? Doesn't find anything about the syntax in ... by rgraetz New Member in Getting Data In 02-28-2011 0 1 | 0 | 1 | |
| | I have overrided some souretypes out of a huge syslog feed ( Kiwisyslog) Now I want to route specific sourcetypes to ... by Starlette Contributor in Getting Data In 02-28-2011 2 3 | 2 | 3 | |
| | Hi folks, I have following text with no timestamps, but some numeric markers that I wanna use for a line break: 21.... by simuvid Splunk Employee  in Getting Data In 02-28-2011 0 6 | 0 | 6 | |
| | When I go to add new WMI collections it seems there's a limit and the GUI only displays 24 Inputs, even though I've a... by maverick Splunk Employee in Getting Data In 02-28-2011 1 4 | 1 | 4 | |
| | I have a UAC-enabled Server 2008 R2 machine with Splunk splunk-4.1.7-95063-x64-release installed. I am using a low-p... by hughkelley Path Finder in Getting Data In 02-28-2011 0 4 | 0 | 4 | |
| | Dear All, I have basic 4 types of files. under C:\Program Files\Splunk\etc\apps\my logs\home_logs\KLZ\host1\ ... by msona Explorer in Getting Data In 02-28-2011 2 8 | 2 | 8 | |
| | I have setup input to index DHCP log files from remote server but unable to see any data being collected or collecto... by atifshaukat New Member in Getting Data In 02-25-2011 0 3 | 0 | 3 | |
| | I'm wondering if it's possible to set the host value for an event based on data within that event. Essentially I'm c... by joshd Builder in Getting Data In 02-25-2011 0 2 | 0 | 2 | |
| | I'm trying to load one of my logs from my phone server into Splunk. Splunk will read the log file and break the event... by snowmizer Communicator in Getting Data In 02-25-2011 4 2 | 4 | 2 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Top Labels
-
add-on
1 -
administration
13 -
blacklist
92 -
configuration
32 -
CSV
208 -
data
479 -
development
5 -
eval
2 -
field extraction
557 -
fields
5 -
forwarder
1 -
forwarder management
3 -
heavy
1 -
heavy forwarder
946 -
host
156 -
HTTP Event Collector
439 -
index
539 -
indexer
705 -
indexing performance
1 -
inputs.conf
830 -
installation
5 -
intermediate forwarder
143 -
introduction
3 -
JSON
392 -
kvstore
1 -
Linux
453 -
login
1 -
Mac
30 -
metadata
1 -
metrics
2 -
modular input
190 -
monitor
309 -
monitoring console
1 -
other
55 -
proactive Splunk component monitoring
2 -
props.conf
978 -
regex
5 -
saved search
2 -
scripted input
244 -
search
1 -
search head
2 -
source
291 -
sourcetype
494 -
Splunk Enterprise
1 -
Splunk Investigate
1 -
splunk-assist
2 -
subsearch
1 -
syslog
318 -
time
204 -
transforms.conf
576 -
troubleshooting
15 -
universal forwarder
1,552 -
using Enterprise Security
3 -
using Splunk Cloud
4 -
using Splunk Enterprise
16 -
whitelist
60 -
Windows
587 -
XML
90
- « Previous
- Next »
Get Updates on the Splunk Community!
Unlock Database Monitoring with Splunk Observability Cloud
In today’s fast-paced digital landscape, even minor database slowdowns can disrupt user experiences and ...
Purpose in Action: How Splunk Is Helping Power an Inclusive Future for All
At Cisco, purpose isn’t a tagline—it’s a commitment. Cisco’s FY25 Purpose Report outlines how the company is ...
[Upcoming Webinar] Demo Day: Transforming IT Operations with Splunk
Join us for a live Demo Day at the Cisco Store on January 21st 10:00am - 11:00am PST
In the fast-paced world ...
