Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Getting Data In
Getting Data In
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | reposting for a user over on the forums: I bounced my indexer and now my forwarders are unable to connect. I just u... by piebob Splunk Employee  in Getting Data In 05-18-2010 1 2 | 1 | 2 | |
| | I am having trouble getting _internal and _audit to be forwarder properly when being passed through more than one for... by Lowell Super Champion in Getting Data In 05-17-2010 1 6 | 1 | 6 | |
| | Hello I have a question about splunk capabilities. I installed splunk on a server (domain member) and I can get th... by petru Engager in Getting Data In 05-17-2010 1 1 | 1 | 1 | |
| | Hi, We have installed Splunk under an eval using just a local username. We'd like to monitor AD, but can't work out ... by craigallen Engager in Getting Data In 05-17-2010 1 1 | 1 | 1 | |
| | We are having a problem getting the Windows app to display wmi data. It seems that the wmi data we are getting is bei... by msallman Explorer in Getting Data In 05-14-2010 0 7 | 0 | 7 | |
| | On Splunk 4.1, I see a bunch of these messages. What do they mean? Should I be concerned? 04-28-2010 13:48:32.27... by Dan Splunk Employee in Getting Data In 05-13-2010 2 3 | 2 | 3 | |
| | Hi, i saw many suggestions to routing data to different index from light forwarder but none seems to work. I have se... by gljiva Path Finder in Getting Data In 05-12-2010 3 5 | 3 | 5 | |
| | I am trying to forward event logs from a Windows XP machine to a Windows 2003 machine. I set up Splunk on the Window... by ericmoss Explorer in Getting Data In 05-12-2010 1 1 | 1 | 1 | |
| | Hey all: I'm very interested in setting Splunk up to have it monitor all of my logs. One of such main requirements ... by geva Explorer in Getting Data In 05-12-2010 2 10 | 2 | 10 | |
| | I have changed input.conf and restarted Spulnk, but I can't see any event generated for changing /etc/hosts file. Th... by clyde772 Communicator in Getting Data In 05-12-2010 3 2 | 3 | 2 | |
| | What I'd like is to have the date appended to the file name. Currently we have a scheduled saved search running each... by rgonzale6 Path Finder in Getting Data In 05-11-2010 0 3 | 0 | 3 | |
| | Can't find a reference to the following error. What does it mean and how do I fix it? Indexing Significant Warns: W... by MikeyG Explorer in Getting Data In 05-11-2010 1 4 | 1 | 4 | |
| | I would like to aggregate data from my NPS servers for helpdesk/support use. I have set up a custom index on each se... by MU_IT New Member in Getting Data In 05-10-2010 0 1 | 0 | 1 | |
| | How do I secure my log file stream from our primary server to our dedicated Splunk server? Are there any secured laye... by sipapress2go Engager in Getting Data In 05-10-2010 1 7 | 1 | 7 | |
| | Hi, I have a requirement to extract all the events in a file. Example: For an order number, there are around 100 e... by ravi_shah01 Engager in Getting Data In 05-10-2010 0 2 | 0 | 2 | |
| | Is there any way to prepopulate the Time Picker via a URL parameter? I need to build a search dynamically in an exte... by vbumgarn Path Finder in Getting Data In 05-08-2010 2 3 | 2 | 3 | |
 | Windows Server 2008 R2 x64 (Windows AD Domain Controller) / Splunk 4.1.1 set up as a full forwarder (custom app via d... by jeff Contributor in Getting Data In 05-07-2010 1 4 | 1 | 4 | |
| | Here is a sample log: 2010-05-06 16:41:18,082 INFO SplunkCLI :: Executing: "/Users/hs/bin/" status space Th... by hans Splunk Employee in Getting Data In 05-07-2010 0 2 | 0 | 2 | |
| | We're building an app for WebSphere. We're prefixing all the app's sourcetypes with "WebSphere:" to disambiguate them... by Justin_Grant Contributor in Getting Data In 05-07-2010 1 1 | 1 | 1 | |
 | Hi We recently had a problem with one type of our indexed log files suddenly being recognized as binary. This is t... by chris Motivator in Getting Data In 05-06-2010 1 4 | 1 | 4 | |
| | So, say we had a dataset with 5 fields, 20 trillion rows. I assume the csv file would be smaller when indexed, but... by kevintelford Path Finder in Getting Data In 05-05-2010 1 8 | 1 | 8 | |
| | Is it possible to somehow configure the "default" index on a per-host basis? We have several lightweight forwarders ... by AthlonRob Engager in Getting Data In 05-05-2010 1 1 | 1 | 1 | |
| | Would I be able to rename a "Source Type" after the data got already indexed into Splunk? Can I rename a type of pat... by clyde772 Communicator in Getting Data In 05-05-2010 1 2 | 1 | 2 | |
| | I recently upgraded to 4.1.2 from 3.4.x. I needed to remove several hosts from our index, so I followed the instruct... by mkinner Explorer in Getting Data In 05-04-2010 1 2 | 1 | 2 | |
| | It it possible to get the result of current splunk index to a new index files as a new source type? [ Already indexe... by clyde772 Communicator in Getting Data In 05-04-2010 0 3 | 0 | 3 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Top Labels
-
add-on
1 -
administration
13 -
blacklist
92 -
configuration
32 -
CSV
208 -
data
480 -
development
5 -
eval
2 -
field extraction
557 -
fields
5 -
forwarder
1 -
forwarder management
3 -
heavy
1 -
heavy forwarder
946 -
host
156 -
HTTP Event Collector
439 -
index
539 -
indexer
705 -
indexing performance
1 -
inputs.conf
830 -
installation
5 -
intermediate forwarder
143 -
introduction
3 -
JSON
392 -
kvstore
1 -
Linux
453 -
login
1 -
Mac
30 -
metadata
1 -
metrics
2 -
modular input
191 -
monitor
309 -
monitoring console
1 -
other
55 -
proactive Splunk component monitoring
2 -
props.conf
979 -
regex
5 -
saved search
2 -
scripted input
244 -
search
1 -
search head
2 -
source
291 -
sourcetype
494 -
Splunk Enterprise
1 -
Splunk Investigate
1 -
splunk-assist
2 -
subsearch
1 -
syslog
319 -
time
204 -
transforms.conf
577 -
troubleshooting
15 -
universal forwarder
1,552 -
using Enterprise Security
3 -
using Splunk Cloud
4 -
using Splunk Enterprise
16 -
whitelist
60 -
Windows
587 -
XML
90
- « Previous
- Next »
Get Updates on the Splunk Community!
AI for AppInspect
We’re excited to announce two new updates to AppInspect designed to save you time and make the app approval ...
App Platform's 2025 Year in Review: A Year of Innovation, Growth, and Community
As we step into 2026, it’s the perfect moment to reflect on what an extraordinary year 2025 was for the Splunk ...
Operationalizing Entity Risk Score with Enterprise Security 8.3+
Overview
Enterprise Security 8.3 introduces a powerful new feature called “Entity Risk Scoring” (ERS) for ...
