Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Getting Data In
Getting Data In
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | We have a text file DEFAULT.PFL(which has just 3 lines of text) in all the below paths /usr/sap/IX4/SYS/profile /usr/... by sushildabare Path Finder in Getting Data In 11-23-2011 0 1 | 0 | 1 | |
| | My setup is a single forwarder sending logs to a Splunk server. Both machines are running Windows 2008. After editing... by vladimirc Explorer in Getting Data In 11-22-2011 0 5 | 0 | 5 | |
| | How can I get the data from http://localhost:8000/en-US/app/search/flashtimeline?auto_pause=true&q=search%20host%3D%2... by jgervin New Member in Getting Data In 11-19-2011 0 10 | 0 | 10 | |
| | This works: curl -u admin:changeme -k https://localhost:8089/services/search/jobs -d"search=search 123" These don... by ppang Splunk Employee  in Getting Data In 11-18-2011 0 1 | 0 | 1 | |
| | I am using the Google Analytics Data Export API to pull some data down into a log file so it can be indexed by splunk... by crobicha Explorer in Getting Data In 11-18-2011 0 5 | 0 | 5 | |
| | I installed a Splunk (Heavy Forwarder) in my Windows 2007 Std SP1 FILE SERVER. Installed, too, Windows APPs. I confi... by mgaleti New Member in Getting Data In 11-16-2011 0 3 | 0 | 3 | |
| | Possible typo in stanza [tcpout] in /usr/local/splunkforwarder/etc/apps/SplunkUniversalForwarder/local/outputs.conf, ... by keshab Path Finder in Getting Data In 11-16-2011 0 7 | 0 | 7 | |
| | I have splunk deployed on a debian VM and it seems to be running fine (collects syslog data etc). No problems there. ... by justinfielding New Member in Getting Data In 11-15-2011 0 5 | 0 | 5 | |
| | I have a user who has collected data from his servers that was indexed by Splunk using the "main" index. Now he wants... by rgcurry Contributor in Getting Data In 11-15-2011 0 1 | 0 | 1 | |
| | I've set up Splunk Free to receive syslogs from my ESX hosts. This is all working perfectly. But is there some way to... by BlightMan Explorer in Getting Data In 11-15-2011 1 6 | 1 | 6 | |
| | Hi, i've read and tried this but somehow it does not work for me. i've put the recommended settings into: $SPLUNKHO... by sergemueller Explorer in Getting Data In 11-15-2011 0 5 | 0 | 5 | |
| | I have successfully installed the receiving server, setup the receiver, opened firewall ports. In setting up the forw... by sackerman New Member in Getting Data In 11-14-2011 0 5 | 0 | 5 | |
| | I am wondering how the splunk forwarder agent handles the following scenario. Let’s say the agent is installed on a... by dejn New Member in Getting Data In 11-14-2011 0 1 | 0 | 1 | |
| | I'd install Universal Forwarder on windows and froward wmi events to index server (Linux server). But I see "No resul... by ITSD Explorer in Getting Data In 11-14-2011 0 8 | 0 | 8 | |
| | Greetings Splunkers! I am currently collecting logs centrally for a content delivery platform for indexing into Splu... by rturk Builder in Getting Data In 11-13-2011 0 3 | 0 | 3 | |
| | Currently, I have a forwarder monitoring a directory of files that are being logged in real time. My indexer is recei... by maverick Splunk Employee in Getting Data In 11-13-2011 1 8 | 1 | 8 | |
| | Greetings Splunkers & Splunkettes! I have the following log entry: 124.180.34.147 2011-10-23 00:09:55 - /xxx_hrtv3m... by rturk Builder in Getting Data In 11-13-2011 0 3 | 0 | 3 | |
| | Hi Splunkers & Splunkettes! So I have a series of devices that logs in UTC as follows: 2011-10-30 23:24:13 0 2 0 0 ... by rturk Builder in Getting Data In 11-13-2011 0 3 | 0 | 3 | |
| | I have a duplication problem w/ splunk- I know why but not how to fix it. I have an event log that I have to extrac... by clintla Contributor in Getting Data In 11-11-2011 0 4 | 0 | 4 | |
 | We've started noticing that some of the data from our Linux universal forwarders are being sent with a '.' appended t... by mfrost8 Builder in Getting Data In 11-11-2011 0 3 | 0 | 3 | |
| | I'm trying to configure SSO for Splunk with Apache/2.2.14 as a reverse-proxy - both applications running on the same ... by Krishna_R Path Finder in Getting Data In 11-11-2011 2 3 | 2 | 3 | |
| | When I insert an event and call the "services/search/jobs/export" REST endpoint, the XML that comes back is malformed... by giraffe Explorer in Getting Data In 11-11-2011 1 2 | 1 | 2 | |
| | I have universal forwarder 4.2.4 installed on a Windows 2008 server. I have it monitoring several directories, but I... by benme Engager in Getting Data In 11-10-2011 0 4 | 0 | 4 | |
| | Hello all, my direcotry structur : /data/A/logs/aaaaaaa.log /data/A/logs/aaaaaaa1.log /data/B/logs/aaaaaaa.log /da... by Christian Path Finder in Getting Data In 11-10-2011 0 2 | 0 | 2 | |
| | Hi Guys I am new to splunk and have been tasked with something that seems a bit challenging to achieve: What I got... by flo_cognosec Communicator in Getting Data In 11-10-2011 0 2 | 0 | 2 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Top Labels
-
add-on
1 -
administration
13 -
blacklist
92 -
configuration
32 -
CSV
208 -
data
480 -
development
5 -
eval
2 -
field extraction
557 -
fields
5 -
forwarder
1 -
forwarder management
3 -
heavy
1 -
heavy forwarder
946 -
host
156 -
HTTP Event Collector
439 -
index
539 -
indexer
705 -
indexing performance
1 -
inputs.conf
830 -
installation
5 -
intermediate forwarder
143 -
introduction
3 -
JSON
392 -
kvstore
1 -
Linux
453 -
login
1 -
Mac
30 -
metadata
1 -
metrics
2 -
modular input
191 -
monitor
309 -
monitoring console
1 -
other
55 -
proactive Splunk component monitoring
2 -
props.conf
979 -
regex
5 -
saved search
2 -
scripted input
244 -
search
1 -
search head
2 -
source
291 -
sourcetype
494 -
Splunk Enterprise
1 -
Splunk Investigate
1 -
splunk-assist
2 -
subsearch
1 -
syslog
319 -
time
204 -
transforms.conf
577 -
troubleshooting
15 -
universal forwarder
1,552 -
using Enterprise Security
3 -
using Splunk Cloud
4 -
using Splunk Enterprise
16 -
whitelist
60 -
Windows
587 -
XML
90
- « Previous
- Next »
Get Updates on the Splunk Community!
App Platform's 2025 Year in Review: A Year of Innovation, Growth, and Community
As we step into 2026, it’s the perfect moment to reflect on what an extraordinary year 2025 was for the Splunk ...
Operationalizing Entity Risk Score with Enterprise Security 8.3+
Overview
Enterprise Security 8.3 introduces a powerful new feature called “Entity Risk Scoring” (ERS) for ...
Unlock Database Monitoring with Splunk Observability Cloud
In today’s fast-paced digital landscape, even minor database slowdowns can disrupt user experiences and ...
