Getting Data In
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Data extraction from multiple servers

aaronkorn
Splunk Employee
Splunk Employee
‎04-27-2012 07:17 AM

Is splunk capable of pulling multiple log files from different servers without installing the universal forwarder on the machines?

Tags (2)
Reply

ziegfried
Influencer
‎04-27-2012 08:43 AM

You can monitor files remotely by exposing the logs in a file share, then mount and monitor it on a server where you have a Splunk forwarder or indexer installed. Most filesharing protocols should work (eg. SMB/CIFS, NFS, SSHFS, ...)

Reply

araitz
Splunk Employee
Splunk Employee
‎04-27-2012 11:49 AM

ziegfried is correct, but we generally would recommened installing the universal forwarder for best experience.

Reply
Get Updates on the Splunk Community!

Database Performance Sidebar Panel Now on APM Database Query Performance & Service ...

We’ve streamlined the troubleshooting experience for database-related service issues by adding a database ...

IM Landing Page Filter - Now Available

We’ve added the capability for you to filter across the summary details on the main Infrastructure Monitoring ...

Dynamic Links from Alerts to IM Navigators - New in Observability Cloud

Splunk continues to improve the troubleshooting experience in Observability Cloud with this latest enhancement ...