Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Getting Data In
Getting Data In
×
Are you a member of the Splunk Community?
Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | I'm able to get the Cisco switch log files from switch IP address to my machine, but how do I use and configure Syslo... by splunkfly New Member in Getting Data In 04-13-2016 0 2 | 0 | 2 | |
 | Migrating from a Splunk 5.0.5 Heavy Forwarder to 6.x Universal Forwarder, we want to take over current checkpoints to... by rbal_splunk Splunk Employee  in Getting Data In 04-13-2016 0 1 | 0 | 1 | |
 | We have single server where we installed a Splunk forwarder and we want to configure outputs.conf such a way that cer... by ajayvvs New Member in Getting Data In 04-13-2016 0 1 | 0 | 1 | |
| | I need to upgrade a forwarder from a universal to a heavy weight one. Now I could just blow away my instance and star... by TONYBYERS Path Finder in Getting Data In 04-13-2016 1 4 | 1 | 4 | |
| | Hello everybody, I have JSON data that I generate from a Python script. It looks like this: { "leaderboard": [ ... by Arismore Explorer in Getting Data In 04-13-2016 0 3 | 0 | 3 | |
| | I am in the process of moving my indexer to a new server, and in the process, I thought it would be a good idea to co... by seanbarbour New Member in Getting Data In 04-12-2016 0 5 | 0 | 5 | |
| |  Hello all, My question is that I have a cvs file that is being updated every hour or so lets say its called test.csv... by raby1996 Path Finder in Getting Data In 04-12-2016 0 1 | 0 | 1 | |
| | Yes, this question has been asked a hundred times. I have looked at all of the examples, but my grasp of the differen... by oliverj Communicator in Getting Data In 04-12-2016 0 5 | 0 | 5 | |
| | We are processing CSV files to index in Splunk, but the Splunk forwarder is always forwarding files twice. Can you pl... by dhavamanis Builder in Getting Data In 04-12-2016 0 2 | 0 | 2 | |
| | I am using Splunk Enterprise (Amazon Market Place AMI) I have added Forwarding receiving port 9997 Installed universa... by sureshsala Explorer in Getting Data In 04-12-2016 0 1 | 0 | 1 | |
| | Trying to determine why some of my forwarders sending in data from Windows virtual desktop instances are having their... by stevepraz Path Finder in Getting Data In 04-12-2016 0 3 | 0 | 3 | |
 | Hi Guys, Am i not sure if anyone has a solution for this. But I am not able to get any output when i run the linux fi... by samaikins New Member in Getting Data In 04-12-2016 0 2 | 0 | 2 | |
| | Hello Guys, I have installed a Splunk Universal Forwarder in my environment and set the deployment server. I also ha... by splunk_kk Path Finder in Getting Data In 04-11-2016 0 2 | 0 | 2 | |
 | Hello, I have several questions about splunk's backend to which I was unable to find a clear answer : 1) What is Sp... by 4Name Explorer in Getting Data In 04-11-2016 1 3 | 1 | 3 | |
 | Hello! I was wondering how to use a directory name (segment) as an event tag. For example: C:\bin\code\python\test_... by lsparrow New Member in Getting Data In 04-11-2016 0 1 | 0 | 1 | |
| | Im getting below error on my heavy forwarder logs, 6 indexers are connect that HF , 4 indexers are working fine. Only... by brod_geico Path Finder in Getting Data In 04-11-2016 0 3 | 0 | 3 | |
 | Hey there, We have a distributed Splunk environment... so, we have universal forwarders sending data to a heavy for... by michael_sleep Communicator in Getting Data In 04-11-2016 0 1 | 0 | 1 | |
| | In my new data set, the time comes in the format 1652 as it relates to 4:52pm. However, when it is before 1AM it come... by svercelli Path Finder in Getting Data In 04-11-2016 0 1 | 0 | 1 | |
| | Is there a process I can use with Splunk to pull audit logs on how, who, when, and where directories are being create... by pnv2254 New Member in Getting Data In 04-11-2016 0 2 | 0 | 2 | |
| | Hi, I have installed Splunk light in Windows and in Linux server also. I have installed a universal forwarder in the... by Monica7 New Member in Getting Data In 04-11-2016 0 1 | 0 | 1 | |
| | I have Splunk Light on Windows and the Universal Forwarder on Raspberry. According to docs, I need to create a server... by andig2 Engager in Getting Data In 04-11-2016 0 2 | 0 | 2 | |
| | Hi All, I need to collect the logs from a Windows machine into Splunk without installing any agent (universal forwar... by kpavan Path Finder in Getting Data In 04-11-2016 0 5 | 0 | 5 | |
| | “I am working with a customer who is a licensed and valid support contract holder with Splunk. They are currently run... by trflesher Explorer in Getting Data In 04-11-2016 0 13 | 0 | 13 | |
| | Is it even possible to configure Windows Event Logs through command line? PS C:\Program Files\SplunkUniversalForwar... by dlogvinenko Engager in Getting Data In 04-11-2016 0 1 | 0 | 1 | |
| | Hi I would like to find out how I can "strip out" events from a input file before they reach the splunk indexer. I... by itsomana Path Finder in Getting Data In 04-09-2016 3 6 | 3 | 6 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Become An Expert
Claim a $25 Cisco Store Gift Card
Help us improve the Splunk Community and complete our survey today!
Top Labels
-
add-on
2 -
administration
12 -
AIX
1 -
audit
1 -
blacklist
92 -
CLI
1 -
configuration
32 -
CSV
208 -
data
472 -
development
5 -
encryption
1 -
eval
2 -
field extraction
551 -
fields
5 -
forwarder
1 -
forwarder management
3 -
heavy
1 -
heavy forwarder
936 -
host
155 -
HTTP Event Collector
434 -
index
538 -
indexer
703 -
indexing performance
1 -
inputs.conf
829 -
installation
5 -
intermediate forwarder
141 -
introduction
3 -
JSON
389 -
kvstore
1 -
Linux
451 -
login
1 -
Mac
30 -
metadata
1 -
metrics
2 -
modular input
187 -
monitor
308 -
monitoring console
1 -
other
47 -
proactive Splunk component monitoring
2 -
props.conf
973 -
regex
5 -
saved search
2 -
scripted input
242 -
search
1 -
search head
2 -
source
290 -
sourcetype
491 -
Splunk Enterprise
1 -
Splunk Investigate
1 -
splunk-assist
2 -
subsearch
1 -
syslog
315 -
time
204 -
transforms.conf
575 -
troubleshooting
15 -
universal forwarder
1,546 -
using Enterprise Security
3 -
using Splunk Cloud
4 -
using Splunk Enterprise
16 -
whitelist
60 -
Windows
586 -
XML
90
- « Previous
- Next »
Get Updates on the Splunk Community!
Index This | Why did the turkey cross the road?
November 2025 Edition
Hayyy Splunk Education Enthusiasts and the Eternally Curious!
We’re back with this ...
Enter the Agentic Era with Splunk AI Assistant for SPL 1.4
🚀 Your data just got a serious AI upgrade — are you ready?
Say hello to the Agentic Era with the ...
Feel the Splunk Love: Real Stories from Real Customers
Hello Splunk Community,
What’s the best part of hearing how our customers use Splunk? Easy: the positive ...
