Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Getting Data In
Getting Data In
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | I'm trying to determine the port range that a forwarder uses as it's source port. Assuming I'm reading $SPLUNK_HOME/v... by CarlS Explorer in Getting Data In 10-20-2010 0 2 | 0 | 2 | |
| | I have 2 scripted inputs running on the same interval - [script://$SPLUNK_HOME/etc/apps/myNewApp/script1.sh] interv... by Mick Splunk Employee  in Getting Data In 10-20-2010 1 7 | 1 | 7 | |
| | I am going to monitor file change on several servers,but I don't like the way of sharing directory .so I installed a ... by gavintofly New Member in Getting Data In 10-20-2010 0 3 | 0 | 3 | |
| | I am using the "Upload a File" option to input OLD event logs.... VERY SLOW TASK !!!! According to the doco, "__Use... by berniefieldhous Engager in Getting Data In 10-20-2010 0 2 | 0 | 2 | |
| | Hi, My previous configuration to filter windows event codes doesn't work when I used it on another machine that is p... by remy06 Contributor in Getting Data In 10-20-2010 0 3 | 0 | 3 | |
 | We are planning on having two instances of Splunk running in different geographical locations. The machines will be p... by kmattern Builder in Getting Data In 10-19-2010 0 1 | 0 | 1 | |
| | Hello, Our indexes seem to be taking up too much disk space so rather than just moving them i'd like to look at the ... by Hazel Communicator in Getting Data In 10-19-2010 1 5 | 1 | 5 | |
| | Hello, The mount on our Indexer box that stores the databases and runs splunk is about to run out of memory (is at 9... by Hazel Communicator in Getting Data In 10-19-2010 1 2 | 1 | 2 | |
| | I have one Sourcetype [syslog-ng] with a myriad of devices all sending (IDS; CISCO; Linux; Windows Servers) through i... by MikeyG Explorer in Getting Data In 10-19-2010 0 2 | 0 | 2 | |
| | I am trying to use *NIX to monitor my network throughput statistics and graph them nicely, I am currently using Bandw... by demonspork New Member in Getting Data In 10-19-2010 0 4 | 0 | 4 | |
| | Hi, I've installed splunk forwarder(regular) on windows server and trying to filter off certain events when sending... by remy06 Contributor in Getting Data In 10-19-2010 1 5 | 1 | 5 | |
| | Hi, How can I filter out "type=Success Audit" logs off a windows event and log only the failure logs? Currently I h... by remy06 Contributor in Getting Data In 10-19-2010 0 8 | 0 | 8 | |
| | Greetings I am pretty new to Splunk and am having issues when it comes to indexing some of our files. They are writt... by brianirwin Path Finder in Getting Data In 10-17-2010 0 8 | 0 | 8 | |
| | I'm trying to follow the instructions from the "Route and filter data" section of the documentation. The server in q... by jambajuice Communicator in Getting Data In 10-16-2010 0 2 | 0 | 2 | |
| | Hi there, simple question but I can't get my head around this. I've got a hosts that manages it's logging with sysl... by francoisjoannet New Member in Getting Data In 10-15-2010 0 2 | 0 | 2 | |
| | I am using splunk 4.1.X and am looking for some clarification for exporting the results of a query that uses | top de... by EricPartington Communicator in Getting Data In 10-15-2010 0 2 | 0 | 2 | |
| | Can I install the Splunk service on a clustered service in Windows 2003 cluster? And if so, what is the best practice... by olsenf New Member in Getting Data In 10-15-2010 0 1 | 0 | 1 | |
| | I have added about 40 winservers through WMI on a forwarder and found that there is only 30 servers on the list. Does... by wys2010 New Member in Getting Data In 10-15-2010 0 1 | 0 | 1 | |
| | I have splunk running on a Windows Server 2008. I have configured splunk to access our DC remotely for event logs. I ... by jklittle New Member in Getting Data In 10-15-2010 0 5 | 0 | 5 | |
| | I've installed Splunk (4.1.5(85165) on windows) and have uploaded some logs without any issues. I now want to monito... by autovhcdev New Member in Getting Data In 10-15-2010 0 3 | 0 | 3 | |
| | Hi, we have a client that is experiencing indexed log disappearing and reappearing on a daily basis. Log input is a f... by gljiva Path Finder in Getting Data In 10-14-2010 0 2 | 0 | 2 | |
| | We need to index a file which has the day's date as part of its name. How to I configure Splunk to read this file? In... by rvbalaji Explorer in Getting Data In 10-14-2010 1 8 | 1 | 8 | |
| | Real simple one this I'm sure. I want to monitor syslog of my router. I have gone to Manager->Data inputs->TCP Did p... by microbyte Engager in Getting Data In 10-14-2010 0 2 | 0 | 2 | |
| | My company purchased an enterprise license and we got it working on one domain. We want to consolidate logs from ano... by asmercer2004 Explorer in Getting Data In 10-14-2010 1 8 | 1 | 8 | |
| | Problem: a hundred servers with the basic event logs (system, application, security) plus various other custom log co... by hammerthework Engager in Getting Data In 10-14-2010 1 4 | 1 | 4 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Top Labels
-
add-on
1 -
administration
13 -
blacklist
92 -
configuration
32 -
CSV
208 -
data
480 -
development
5 -
eval
2 -
field extraction
557 -
fields
5 -
forwarder
1 -
forwarder management
3 -
heavy
1 -
heavy forwarder
946 -
host
156 -
HTTP Event Collector
439 -
index
539 -
indexer
705 -
indexing performance
1 -
inputs.conf
830 -
installation
5 -
intermediate forwarder
143 -
introduction
3 -
JSON
392 -
kvstore
1 -
Linux
453 -
login
1 -
Mac
30 -
metadata
1 -
metrics
2 -
modular input
191 -
monitor
309 -
monitoring console
1 -
other
55 -
proactive Splunk component monitoring
2 -
props.conf
979 -
regex
5 -
saved search
2 -
scripted input
244 -
search
1 -
search head
2 -
source
291 -
sourcetype
494 -
Splunk Enterprise
1 -
Splunk Investigate
1 -
splunk-assist
2 -
subsearch
1 -
syslog
319 -
time
204 -
transforms.conf
577 -
troubleshooting
15 -
universal forwarder
1,552 -
using Enterprise Security
3 -
using Splunk Cloud
4 -
using Splunk Enterprise
16 -
whitelist
60 -
Windows
587 -
XML
90
- « Previous
- Next »
Get Updates on the Splunk Community!
App Platform's 2025 Year in Review: A Year of Innovation, Growth, and Community
As we step into 2026, it’s the perfect moment to reflect on what an extraordinary year 2025 was for the Splunk ...
Operationalizing Entity Risk Score with Enterprise Security 8.3+
Overview
Enterprise Security 8.3 introduces a powerful new feature called “Entity Risk Scoring” (ERS) for ...
Unlock Database Monitoring with Splunk Observability Cloud
In today’s fast-paced digital landscape, even minor database slowdowns can disrupt user experiences and ...
