Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Getting Data In
Getting Data In
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | What's the recommended best practice to architect a Windows universal forwarder to an indexer cluster? Is it better ... by splunkDude2015 Explorer in Getting Data In 08-11-2015 0 1 | 0 | 1 | |
 | Hello Experts, I had posted the same question couple of days ago and had to re-post because of the formatting issues.... by Raghav2384 Motivator in Getting Data In 08-11-2015 0 4 | 0 | 4 | |
| | Hi guys, I need to monitor file changes in Splunk. I have a file that is updated constantly, and I need to know when... by rubeniturrieta Communicator in Getting Data In 08-11-2015 0 2 | 0 | 2 | |
| | I have a log file that's made up of timestamped log messages, so there's a _time for the file, but then multiple time... by willial Communicator in Getting Data In 08-11-2015 0 15 | 0 | 15 | |
| | I need to get a report on devices that are not reporting to SPLUNK. When I try with: | metadata type=hosts | rename... by nuro New Member in Getting Data In 08-11-2015 0 3 | 0 | 3 | |
| | Given this in the props.conf on my indexer: [source://c:\Documents and Settings\*\AppData\Roaming\Ipswitch\WS_FTP\Lo... by tyronetv Communicator in Getting Data In 08-11-2015 0 3 | 0 | 3 | |
| | I am looking to monitor specific AD user groups and want to create a search that alerts me to when the members of the... by lucasjeff New Member in Getting Data In 08-11-2015 0 2 | 0 | 2 | |
 | Hello. Our site does not currently use or have a particular need for indexer clustering. We are, however, about to... by mfrost8 Builder in Getting Data In 08-11-2015 1 3 | 1 | 3 | |
| | I want to know if we can integrate Pega 7 with Splunk? If yes kindly brief how to do it.. by sudha1990 New Member in Getting Data In 08-11-2015 0 1 | 0 | 1 | |
| | Hi, Is it possible to save search results with specific name and save that csv in my own directory means I want to s... by Laya123 Communicator in Getting Data In 08-11-2015 0 3 | 0 | 3 | |
 | Hi, We have splunk UF installed on devices to send log files to another forwarder, which sends the logs to indexer. ... by strive Influencer in Getting Data In 08-11-2015 0 3 | 0 | 3 | |
| | Hi Splunker's, Events coming for future dates, how to identify the future events and index them. Thanks, by krishnarajb2304 Explorer in Getting Data In 08-10-2015 0 3 | 0 | 3 | |
| | Hello all! In regards to the Windows Event Log filtering in the newer 6.0+ forwarders. I'm looking for some help on ... by glancaster Path Finder in Getting Data In 08-10-2015 0 1 | 0 | 1 | |
| |  Hi, I want to setup the file monitoring for all the files starting with "mq-" or "secs-" or "err-" in below directory... by dreamfeeder New Member in Getting Data In 08-10-2015 0 11 | 0 | 11 | |
 | Till now in our environment we have monitored only the log files which are in '.log' format in the Universal Forwarde... by pavanae Builder in Getting Data In 08-10-2015 0 4 | 0 | 4 | |
| | Can filters be set up to accomplish this? Scenario: 4 servers (server001.domain, server002.domain, server003.domain... by agentguerry Path Finder in Getting Data In 08-10-2015 0 7 | 0 | 7 | |
| | Let me first preface this by saying that I am a total Splunk newbie and this is very similar to a lot of XML parsing ... by jtashker New Member in Getting Data In 08-10-2015 0 6 | 0 | 6 | |
| | I'm getting the following error when trying to receive data from a universal forwarder on my indexer: (log from inde... by devinmclean Path Finder in Getting Data In 08-10-2015 0 12 | 0 | 12 | |
| | I am monitoring certain paths in my Windows folders.. I have already done the following: Put crcSalt on my inputs.con... by shariinPH Contributor in Getting Data In 08-10-2015 0 8 | 0 | 8 | |
| | To create a deployment app I create a directory under the deployment-apps using the mkdir command say "def". Under th... by sundaresh83 Explorer in Getting Data In 08-10-2015 1 1 | 1 | 1 | |
| | In our environment, our application logs all go to a single log folder divided by application. Ex... /scratch/conte... by kurtgad New Member in Getting Data In 08-10-2015 0 1 | 0 | 1 | |
| | Hi everyone, I created a script to install the splunkforwarder on the clients. The script is called on the main ind... by Federica_92 Communicator in Getting Data In 08-10-2015 0 11 | 0 | 11 | |
| | Hi, I have a log that separate using Grave Accent 3`0`1`1`1dk3ad`1020`20140301`10:53:37`1`17`140219185904`172.3.19... by cleartext New Member in Getting Data In 08-09-2015 0 2 | 0 | 2 | |
| | Hello Splunk Guru, In our environment, we have many Universal forwarders, few indexers and couple of search heads. ... by rrmavani Engager in Getting Data In 08-09-2015 0 1 | 0 | 1 | |
| | In an environment that provides reporting across many different time zones, should summary searches run under a user ... by sc0tt Builder in Getting Data In 08-09-2015 0 1 | 0 | 1 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Top Labels
-
administration
13 -
blacklist
92 -
configuration
32 -
CSV
209 -
data
502 -
development
5 -
field extraction
564 -
forwarder management
2 -
heavy forwarder
961 -
host
159 -
HTTP Event Collector
444 -
index
544 -
indexer
715 -
inputs.conf
840 -
installation
5 -
intermediate forwarder
145 -
JSON
395 -
Linux
461 -
Mac
30 -
modular input
195 -
monitor
313 -
other
83 -
props.conf
995 -
saved search
2 -
scripted input
249 -
search
1 -
search head
2 -
source
291 -
sourcetype
496 -
Splunk Enterprise
1 -
Splunk Investigate
1 -
splunk-assist
2 -
syslog
324 -
time
204 -
transforms.conf
584 -
troubleshooting
14 -
universal forwarder
1,571 -
using Enterprise Security
3 -
using Splunk Cloud
4 -
using Splunk Enterprise
16 -
whitelist
60 -
Windows
595 -
XML
91
- « Previous
- Next »
Get Updates on the Splunk Community!
Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas
Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas
Cisco Live 2026 is almost here, and this ...
What Is the Name of the USB Key Inserted by Bob Smith? (BOTS Hint, Not the Answer)
Hello Splunkers,
So you searched, “what is the name of the usb key inserted by bob smith?”
Not gonna lie… ...
Automating Threat Operations and Threat Hunting with Recorded Future
Automating Threat Operations and Threat Hunting
with Recorded Future
June 29, 2026 | Register
Is your ...
Unanswered Topics
