Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Getting Data In
Getting Data In
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | We are logging OS events with the Nix app on our universal forwarders. As you can see from the attached output, the e... by nterry Path Finder in Getting Data In 03-16-2012 1 15 | 1 | 15 | |
| | Possible to extract reload via endpoint after editing props? by rroberts Splunk Employee  in Getting Data In 03-16-2012 0 2 | 0 | 2 | |
| | Good morning, Still VERY new to Splunk here. But I had a issue I was looking for input on where to start with troub... by daniel333 Builder in Getting Data In 03-16-2012 0 1 | 0 | 1 | |
| | I want to access a Splunk remote server that has the same subnet mask, but of a different network from the client com... by misteryuku Communicator in Getting Data In 03-15-2012 0 1 | 0 | 1 | |
| | Hi all, Running Splunk v4.2.3 and using a Universal Forwarder (4.2.3) to "monitor" a CSV file and forward back to a ... by Splunker Communicator in Getting Data In 03-15-2012 2 4 | 2 | 4 | |
| | We have forwarders sending data to our dedicated indexers. Do we need to set up custom sourcetypes on the forwarders ... by jonathan_lam Explorer in Getting Data In 03-15-2012 0 1 | 0 | 1 | |
| | i installed the *NIX App, then i chose to monitor /etc of the linux Splunk is installed on. i tested it, modified a j... by cvajs Contributor in Getting Data In 03-15-2012 1 3 | 1 | 3 | |
| | Am i right to say that the , host, host_regex,index, source,sourcetype are the request parameters for the Receiever e... by misteryuku Communicator in Getting Data In 03-15-2012 0 1 | 0 | 1 | |
| | I'd like to create a shortcut for admins to create specific new data inputs. For example, if I want to have a shortcu... by Justin_Grant Contributor in Getting Data In 03-14-2012 0 1 | 0 | 1 | |
 | What are the gotchas to configuring this other than what is documented in this Splunk Wiki article which states that ... by the_wolverine Champion in Getting Data In 03-14-2012 2 2 | 2 | 2 | |
| | Hi, How do I create a forwarder to get particular file from a directory, suppose want to index log file from 3 days ... by vaibhavbeohar Path Finder in Getting Data In 03-14-2012 0 1 | 0 | 1 | |
| | Hello every one, I am a new user of the splunk. I have facing a problem that input the log file from directory. In... by zitacheung Engager in Getting Data In 03-13-2012 0 5 | 0 | 5 | |
| | I am struggling to get the "OSSEC Agent Management" page to display my remote agents. Testing using the ossec_agent_s... by wpz1599 New Member in Getting Data In 03-13-2012 0 12 | 0 | 12 | |
| | Hi all, I am setting up the Universal Forwarder for Windows 2008 and deploying it using a batch file. I am getting h... by rmero New Member in Getting Data In 03-13-2012 0 1 | 0 | 1 | |
| | I want to write a monitor stanza that picks up a log named "mytest.log" which may be found in either /var/log/app/ o... by tpsplunk Communicator in Getting Data In 03-13-2012 4 4 | 4 | 4 | |
 | I know my users have admin privileges but no matter which login I use, even admin, I keep getting unauthorized or adm... by Flynt Splunk Employee in Getting Data In 03-13-2012 2 1 | 2 | 1 | |
| | Is Splunk's indexed data difficult or nearly impossible to modify? by misteryuku Communicator in Getting Data In 03-13-2012 0 7 | 0 | 7 | |
| | Lets say if i do not search for the data using the splunk search then can i edit the data directly from the splunk se... by misteryuku Communicator in Getting Data In 03-12-2012 0 7 | 0 | 7 | |
| | POST data/inputs/ad/{name} Modifies a given AD monitoring stanza. What does this mean exactly? What can i do using ... by misteryuku Communicator in Getting Data In 03-12-2012 0 1 | 0 | 1 | |
| | I've got a bunch of server which boot entirely without local disk. Is there a means to disable splunkforwarder from ... by stl New Member in Getting Data In 03-12-2012 0 3 | 0 | 3 | |
| | We currently have another syslog server that is handling some network related scripting and can't be shutdown, and ra... by gregwilliams Path Finder in Getting Data In 03-12-2012 0 3 | 0 | 3 | |
| | In testing for implementation on an enterprise Splunk implementation, I am working on my XP desktop with Splunk 4.31 ... by timmy13 Communicator in Getting Data In 03-12-2012 0 6 | 0 | 6 | |
| | 1 | 4 | ||
| | Hi all, I'm very new to Splunk and am doing it for a school project. I was tasked to forward data from a Forwarder t... by Yan_Yi_Goh Explorer in Getting Data In 03-11-2012 0 6 | 0 | 6 | |
| | I have a universal forwarder listening on udp:12000 for messages from various processes and relaying it to splunk ind... by asingla Communicator in Getting Data In 03-11-2012 2 3 | 2 | 3 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Top Labels
-
add-on
2 -
administration
13 -
AIX
1 -
audit
1 -
blacklist
92 -
CLI
1 -
configuration
32 -
CSV
208 -
data
474 -
development
5 -
encryption
1 -
eval
2 -
field extraction
554 -
fields
5 -
forwarder
1 -
forwarder management
3 -
heavy
1 -
heavy forwarder
940 -
host
155 -
HTTP Event Collector
437 -
index
539 -
indexer
704 -
indexing performance
1 -
inputs.conf
829 -
installation
5 -
intermediate forwarder
142 -
introduction
3 -
JSON
391 -
kvstore
1 -
Linux
453 -
login
1 -
Mac
30 -
metadata
1 -
metrics
2 -
modular input
190 -
monitor
308 -
monitoring console
1 -
other
50 -
proactive Splunk component monitoring
2 -
props.conf
977 -
regex
5 -
saved search
2 -
scripted input
243 -
search
1 -
search head
2 -
search job inspector
1 -
source
291 -
sourcetype
493 -
Splunk Enterprise
1 -
Splunk Investigate
1 -
splunk-assist
2 -
subsearch
1 -
syslog
317 -
time
204 -
transforms.conf
576 -
troubleshooting
15 -
universal forwarder
1,552 -
using Enterprise Security
3 -
using Splunk Cloud
4 -
using Splunk Enterprise
16 -
whitelist
60 -
Windows
587 -
XML
90
- « Previous
- Next »
Get Updates on the Splunk Community!
Data Management Digest – December 2025
Welcome to the December edition of Data Management Digest!
As we continue our journey of data innovation, the ...
Index This | What is broken 80% of the time by February?
December 2025 Edition
Hayyy Splunk Education Enthusiasts and the Eternally Curious!
We’re back with this ...
Unlock Faster Time-to-Value on Edge and Ingest Processor with New SPL2 Pipeline ...
Hello Splunk Community,
We're thrilled to share an exciting update that will help you manage your data more ...
