Informational

splunk clean eventdata
To permanently remove data from a single index, type:

splunk clean eventdata -index
-where is the name of the targeted index.
-Add the -f parameter to force clean to skip its confirmation prompts.

splunk stop
splunk clean eventdata
-This example removes data from the _internal index and forces

-Splunk to skip the confirmation prompt:
splunk stop
splunk clean eventdata -index _internal -f

splunk remove index index_name