Getting Data In

Community Activity

What is the difference between a lightforwarder and a regular forwarder? Apart from the fact that a lightforwarder does not have a web UI, what are the main differences between the 2 apps? by Mick Splunk Employee in Getting Data In 03-09-2010 0 2	0	2
Data from forwarder arrives at the indexer but does not get indexed Hi I have set up a light weight forwarder that appears to be getting data to the indexer. But I can't search for an... by chris Motivator in Getting Data In 03-05-2010 2 2	2	2
Can I replicate a subset of the data to a non-Splunk destination? I need to do the following on my forwarder: Forward all data received and gathered by the forwarder to Splunk indexe... by Alan_Bradley Path Finder in Getting Data In 02-23-2010 1 1	1	1
retrying a scripted input after a failure [I heard this question on an internal mailing list, but it seemed generally relevant so asking it here too] I have a... by Justin_Grant Contributor in Getting Data In 02-22-2010 1 2	1	2
Is it possible to tell LINE_BREAKER to stop eating my angle bracket? The use of LINE_BREAKER is a bit cryptic to me... ok, a lot. But I think I've managed to figure out how to break my ... by hulahoop Splunk Employee in Getting Data In 02-10-2010 0 6	0	6
How do I group lines into a single event at index-time? What I'm trying to do: at index time, create a multiline event based on a unique ID. In the data sample below, I nee... by hulahoop Splunk Employee in Getting Data In 02-08-2010 2 6	2	6
What are the default sourcetypes and how are they determined? Sometimes Splunk sets the sourcetype on an incoming file as breakable_text or too_small. What determines these sourc... by Yancy Path Finder in Getting Data In 01-29-2010 1 1	1	1
monitoring hundreds of metrics and/or configuration items: how to do efficiently? I'm trying to use Splunk to monitor both runtime metrics and configuration state of a server application like JBoss o... by Justin_Grant Contributor in Getting Data In 01-27-2010 2 4	2	4
Can I monitor Windows Registry with Splunk? Are there ways in Splunk to monitor and index any activity on Windows Registry? by Ledio_Ago Splunk Employee in Getting Data In 01-20-2010 2 1	2	1
How can I monitor a directory full of mixed types of logfiles while explicitly applying sourcetypes? I have a directory /logdir and it contains various types of files, such as apache logs, syslog files, local applicati... by jrodman Splunk Employee in Getting Data In 01-15-2010 2 1	2	1
How do I set a hostname? What do I need to do to set the correct hostname for an event? by matt Splunk Employee in Getting Data In 01-15-2010 2 3	2	3
My coldtofrozen script seems to hang splunk, what can I do? When my selected coldToFrozenScript runs, which can take 10 minutes, the splunk search interface stops working until ... by jrodman Splunk Employee in Getting Data In 01-15-2010 0 1	0	1
I can't see data I know is indexed I have data indexed but the "all indexed data" dashboard module is empty. Searching for * over all time produces no r... by cfrln Explorer in Getting Data In 01-14-2010 2 2	2	2