topic Date compare in Splunk Search https://community.splunk.com/t5/Splunk-Search/Date-compare/m-p/505417#M141236 <P>Hi, I am new to splunk so pardon me if made any mistake or asking simple questions, i&nbsp; need to extract data from XML files, only when the xml parameter date is in current date and my date filed (<STRONG>printed-Timestramp)</STRONG> is in this format&nbsp; "2020-06-20T01:23:23.693-0700"</P><P>i tried below query now i need to pass the&nbsp; XML Parameter <STRONG>printed-Timestramp , </STRONG>please correct me for the best way to get the result<STRONG><BR /></STRONG><BR />|&nbsp;makeresults | eval substrng=strptime(substr("2020-06-20T01:23:23.693-0700",1,10),"%Y-%m-%d")| eval compare=now() | where compare&lt;substrng | fields + substrng,compare<BR /><BR />below arethe reference of my xml file</P><P>&nbsp;</P><P>&nbsp;</P> Wed, 24 Jun 2020 10:28:56 GMT karunagaraprabh 2020-06-24T10:28:56Z Date compare https://community.splunk.com/t5/Splunk-Search/Date-compare/m-p/505417#M141236 <P>Hi, I am new to splunk so pardon me if made any mistake or asking simple questions, i&nbsp; need to extract data from XML files, only when the xml parameter date is in current date and my date filed (<STRONG>printed-Timestramp)</STRONG> is in this format&nbsp; "2020-06-20T01:23:23.693-0700"</P><P>i tried below query now i need to pass the&nbsp; XML Parameter <STRONG>printed-Timestramp , </STRONG>please correct me for the best way to get the result<STRONG><BR /></STRONG><BR />|&nbsp;makeresults | eval substrng=strptime(substr("2020-06-20T01:23:23.693-0700",1,10),"%Y-%m-%d")| eval compare=now() | where compare&lt;substrng | fields + substrng,compare<BR /><BR />below arethe reference of my xml file</P><P>&nbsp;</P><P>&nbsp;</P> Wed, 24 Jun 2020 10:28:56 GMT https://community.splunk.com/t5/Splunk-Search/Date-compare/m-p/505417#M141236 karunagaraprabh 2020-06-24T10:28:56Z Re: Date compare https://community.splunk.com/t5/Splunk-Search/Date-compare/m-p/505465#M141254 <P>| makeresults | eval epoch=strptime("2020-06-20T01:23:23.693-0700","%FT%T.%3Q%z")<BR /><BR /></P><P><A href="https://docs.splunk.com/Documentation/Splunk/latest/SearchReference/Commontimeformatvariables" target="_self">https://docs.splunk.com/Documentation/Splunk/latest/SearchReference/Commontimeformatvariables</A></P><P>&nbsp;</P><P><STRONG>now()&nbsp;</STRONG>is epoch. please try this query.</P> Mon, 22 Jun 2020 11:43:38 GMT https://community.splunk.com/t5/Splunk-Search/Date-compare/m-p/505465#M141254 to4kawa 2020-06-22T11:43:38Z