Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Getting Data In
Getting Data In
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | I have a FTP data collector which pulls in files from an FTP server and dumps them into a directory monitored by Splu... by phoenixdigital Builder in Getting Data In 03-22-2012 0 7 | 0 | 7 | |
| | I am just starting to dabble with the splunk API. I am following the examples shown in the splunk documentation. The ... by msarro Builder in Getting Data In 03-22-2012 1 5 | 1 | 5 | |
| | I thought this would be easy to do, but I didn't see any way to to this in inputs.conf.spec I have a cluster of mach... by mslvrstn Communicator in Getting Data In 03-22-2012 0 11 | 0 | 11 | |
| | Hi all - I'm looking for some advice on managing different combinations of inputs based on server type. For example, ... by briguy Engager in Getting Data In 03-22-2012 1 2 | 1 | 2 | |
| | I want to assign ALL sources the sourcetype my_logs_555, and then use the Priority parameter in props.conf to apply a... by sgarvin55 Splunk Employee  in Getting Data In 03-21-2012 1 1 | 1 | 1 | |
| | As I've been building out our Splunk installation I've been treating the indexers as appliances. By that I mean all o... by colinj Path Finder in Getting Data In 03-21-2012 1 1 | 1 | 1 | |
| | I have a task: investigate possibility not to install universal forwarder and use only java instead. Can REST API (ja... by cgladky Engager in Getting Data In 03-21-2012 0 6 | 0 | 6 | |
| | Hi, I install Splunk Universal Forwarder on a Windows server 2008. The Splunk-Server IP is known only after startup.... by dadi Path Finder in Getting Data In 03-21-2012 0 6 | 0 | 6 | |
| | I have a 4.3 indexer and a 4.3 forwarder. The forwarder is reading the contents of a file and sending the messages o... by mloven Path Finder in Getting Data In 03-21-2012 0 3 | 0 | 3 | |
| | Hi, I have written a script whose output is: It is well formatted (arranged in columns although the formatting is not... by mridus New Member in Getting Data In 03-20-2012 0 3 | 0 | 3 | |
| | What is the most suggested way to pull data from Active Diretory? We need to input Active Directory's user informati... by clyde772 Communicator in Getting Data In 03-20-2012 0 2 | 0 | 2 | |
| | Our Splunk server receives data through syslog, and all data is tagged with 'sourcetype=syslog'. I am interested in ... by stefanlasiewski Contributor in Getting Data In 03-19-2012 0 2 | 0 | 2 | |
| | Is there a way to access SplunkWeb without turning on indexing? My license just got crushed by a security audit team... by jam678 Explorer in Getting Data In 03-19-2012 1 3 | 1 | 3 | |
| | My new forwarder appears not to be talking to the configured indexer(s) [tcpout] defaultGroup = splunk1_9997_splunk2... by willthames2 Path Finder in Getting Data In 03-19-2012 0 3 | 0 | 3 | |
| | I have many hosts with the correct event time, these all forward to two receivers with the correct time. I wanted to ... by djfisher Explorer in Getting Data In 03-19-2012 4 2 | 4 | 2 | |
| | I've got a search of our Ironport web access logs that produces a list of cs_usernames (as well as other details), an... by AlexD Explorer in Getting Data In 03-18-2012 0 2 | 0 | 2 | |
| | I am currently evaluating Splunk as a possible SIEM replacement for RSA enVision. I would like to test netflow repor... by jodros Builder in Getting Data In 03-16-2012 0 1 | 0 | 1 | |
| | I'm at a client that is interested in knowing the abilities of Splunk to work behind load balancers. LB on search h... by Jason Motivator in Getting Data In 03-16-2012 2 5 | 2 | 5 | |
| | We are logging OS events with the Nix app on our universal forwarders. As you can see from the attached output, the e... by nterry Path Finder in Getting Data In 03-16-2012 1 15 | 1 | 15 | |
| | Possible to extract reload via endpoint after editing props? by rroberts Splunk Employee in Getting Data In 03-16-2012 0 2 | 0 | 2 | |
| | Good morning, Still VERY new to Splunk here. But I had a issue I was looking for input on where to start with troub... by daniel333 Builder in Getting Data In 03-16-2012 0 1 | 0 | 1 | |
| | I want to access a Splunk remote server that has the same subnet mask, but of a different network from the client com... by misteryuku Communicator in Getting Data In 03-15-2012 0 1 | 0 | 1 | |
| | Hi all, Running Splunk v4.2.3 and using a Universal Forwarder (4.2.3) to "monitor" a CSV file and forward back to a ... by Splunker Communicator in Getting Data In 03-15-2012 2 4 | 2 | 4 | |
| | We have forwarders sending data to our dedicated indexers. Do we need to set up custom sourcetypes on the forwarders ... by jonathan_lam Explorer in Getting Data In 03-15-2012 0 1 | 0 | 1 | |
| | i installed the *NIX App, then i chose to monitor /etc of the linux Splunk is installed on. i tested it, modified a j... by cvajs Contributor in Getting Data In 03-15-2012 1 3 | 1 | 3 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Top Labels
-
administration
13 -
blacklist
92 -
configuration
32 -
CSV
209 -
data
502 -
development
5 -
field extraction
564 -
forwarder management
2 -
heavy forwarder
961 -
host
159 -
HTTP Event Collector
444 -
index
544 -
indexer
715 -
inputs.conf
840 -
installation
5 -
intermediate forwarder
145 -
JSON
395 -
Linux
461 -
Mac
30 -
modular input
195 -
monitor
313 -
other
83 -
props.conf
995 -
saved search
2 -
scripted input
249 -
search
1 -
search head
2 -
source
291 -
sourcetype
496 -
Splunk Enterprise
1 -
Splunk Investigate
1 -
splunk-assist
2 -
syslog
324 -
time
204 -
transforms.conf
584 -
troubleshooting
14 -
universal forwarder
1,571 -
using Enterprise Security
3 -
using Splunk Cloud
4 -
using Splunk Enterprise
16 -
whitelist
60 -
Windows
595 -
XML
91
- « Previous
- Next »
Get Updates on the Splunk Community!
Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas
Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas
Cisco Live 2026 is almost here, and this ...
What Is the Name of the USB Key Inserted by Bob Smith? (BOTS Hint, Not the Answer)
Hello Splunkers,
So you searched, “what is the name of the usb key inserted by bob smith?”
Not gonna lie… ...
Automating Threat Operations and Threat Hunting with Recorded Future
Automating Threat Operations and Threat Hunting
with Recorded Future
June 29, 2026 | Register
Is your ...
Unanswered Topics
