Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Getting Data In
Getting Data In
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | looking to find a procedure or help to configure i/o so i can capture the same from universal forwarders. currently ... by jiaqya Builder in Getting Data In 12-02-2017 0 3 | 0 | 3 | |
| | After 2 days of reading numerous help docs and watching tutorial video's still not able to get Splunk Cloud monitorin... by apietersen Contributor in Getting Data In 12-02-2017 0 9 | 0 | 9 | |
| | Hi, I've got a problem with monitoring several log files generated by syslog-ng. There are 50+ switches. I am collec... by ikulcsar Communicator in Getting Data In 12-02-2017 1 4 | 1 | 4 | |
| | I have a log line logically looking something like this: f1=a f2=b f3=c custom=[]{ c1{f=x} c2{f=y} c3{f=x}} ... by dtakacssplunk Explorer in Getting Data In 12-01-2017 0 3 | 0 | 3 | |
| | I want to fetch DNS and DHCP logs from my server directly to my local system, where I have my Splunk enterprise, with... by singhkrmanish76 New Member in Getting Data In 12-01-2017 0 2 | 0 | 2 | |
 | We have a partner who wants an extremely light interface to send data into a Splunk instance. They prefer to make a s... by jamesoconnell Path Finder in Getting Data In 12-01-2017 1 2 | 1 | 2 | |
| | Hi, i have a windows environment and universal forwarder installed on the servers and forwarding different type of ... by carlyleadmin Contributor in Getting Data In 12-01-2017 0 2 | 0 | 2 | |
| | I have a master asset list and I need to give them tagging so that when I type something like src_asset_tag=firewall ... by rahul_acc_splun New Member in Getting Data In 12-01-2017 0 1 | 0 | 1 | |
| |   I'm working with Exchange IIS data from our CAS servers and am having trouble with Splunk translating the time from U... by asofo Path Finder in Getting Data In 12-01-2017 0 1 | 0 | 1 | |
| | Hi, I have an issue with a sourcetype that logs in UTC/GMT but does not include TZ information, so I would like to s... by echalex Builder in Getting Data In 12-01-2017 0 5 | 0 | 5 | |
| | Need to send certain Windows security and audit files to a RHEL rsyslog server. This is what I have so far (based on ... by pil321 Communicator in Getting Data In 12-01-2017 0 7 | 0 | 7 | |
| | How to change the URL of the Splunk Enterprise shortcut in Windows start menu? I have already updated ports using "sp... by gjanardh Explorer in Getting Data In 11-30-2017 0 1 | 0 | 1 | |
| | Hi, We have integrated Mulesoft with splunk and logs are sending to the heavy forwarder and indexing into "Main" ind... by Swkadam New Member in Getting Data In 11-30-2017 0 4 | 0 | 4 | |
 | Hi, I am trying to create a new app which will be used to send a Splunk Adaptive response via REST API. I am able ge... by ramesh_babu71 Path Finder in Getting Data In 11-30-2017 0 3 | 0 | 3 | |
 | Every sample log file that I attempt to import as my data source returns the exception: ⚠ cannot concatenate 'str' ... by dweston1 Engager in Getting Data In 11-30-2017 2 3 | 2 | 3 | |
| | is it possible to store buckets in different drives? this is all windows environment hot buckets on drive D:\ warm bu... by lmakonnen_Spear New Member in Getting Data In 11-30-2017 0 3 | 0 | 3 | |
| | Hi, I'm trying to route data to different indexes and sourcetypes based upon hosts coming, but getting errors, and u... by a212830 Champion in Getting Data In 11-30-2017 0 3 | 0 | 3 | |
| | Hello, I want to identify the login and logouts for each user on a server. I use the event_id 4624 (logon) and 4634(l... by Aufex Explorer in Getting Data In 11-30-2017 0 2 | 0 | 2 | |
 | I have a dns log that is very chatty with internal requests (e.g. localserver5.internal). I would like to forward dns... by ejwade Contributor in Getting Data In 11-30-2017 0 3 | 0 | 3 | |
| | Hello All, can any one please help me out in how to index the Task scheduler logs from the windows box..?? Need to ... by RashmiGowda Explorer in Getting Data In 11-30-2017 1 2 | 1 | 2 | |
| | [WinEventLog://Security] disabled=0 start_from=oldest current_only=0 evt_resolve_ad_obj=0 checkpointInterval=5 whitel... by Kitteh Path Finder in Getting Data In 11-29-2017 0 9 | 0 | 9 | |
| | I have an application that uses rolling logging. The rolling logging works as such: logs are initially written to "... by joshuapetitt Path Finder in Getting Data In 11-29-2017 0 4 | 0 | 4 | |
 | I have a tar.gz file and I wan't to continuously monitor it. I tried to index it to Splunk Enterprise via Settings>Da... by dantimola Communicator in Getting Data In 11-29-2017 0 21 | 0 | 21 | |
| | Hi all, I am current trying to test persistent queue to see whether it works on heavy forwarder. However, it doesn't... by xrtan Explorer in Getting Data In 11-29-2017 0 2 | 0 | 2 | |
 | I installed a Splunk Enterprise 7.0 on a Unix machine and wish to get data from a Windows machine (any data would suf... by bwouters Path Finder in Getting Data In 11-29-2017 0 5 | 0 | 5 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Top Labels
-
add-on
1 -
administration
13 -
blacklist
92 -
configuration
32 -
CSV
208 -
data
479 -
development
5 -
eval
2 -
field extraction
557 -
fields
5 -
forwarder
1 -
forwarder management
3 -
heavy
1 -
heavy forwarder
946 -
host
156 -
HTTP Event Collector
439 -
index
539 -
indexer
705 -
indexing performance
1 -
inputs.conf
830 -
installation
5 -
intermediate forwarder
143 -
introduction
3 -
JSON
392 -
kvstore
1 -
Linux
453 -
login
1 -
Mac
30 -
metadata
1 -
metrics
2 -
modular input
190 -
monitor
309 -
monitoring console
1 -
other
55 -
proactive Splunk component monitoring
2 -
props.conf
978 -
regex
5 -
saved search
2 -
scripted input
244 -
search
1 -
search head
2 -
source
291 -
sourcetype
494 -
Splunk Enterprise
1 -
Splunk Investigate
1 -
splunk-assist
2 -
subsearch
1 -
syslog
318 -
time
204 -
transforms.conf
576 -
troubleshooting
15 -
universal forwarder
1,552 -
using Enterprise Security
3 -
using Splunk Cloud
4 -
using Splunk Enterprise
16 -
whitelist
60 -
Windows
587 -
XML
90
- « Previous
- Next »
Get Updates on the Splunk Community!
Unlock Database Monitoring with Splunk Observability Cloud
In today’s fast-paced digital landscape, even minor database slowdowns can disrupt user experiences and ...
Purpose in Action: How Splunk Is Helping Power an Inclusive Future for All
At Cisco, purpose isn’t a tagline—it’s a commitment. Cisco’s FY25 Purpose Report outlines how the company is ...
[Upcoming Webinar] Demo Day: Transforming IT Operations with Splunk
Join us for a live Demo Day at the Cisco Store on January 21st 10:00am - 11:00am PST
In the fast-paced world ...
