Knowledge Management
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

What are some good Splunk tips & tricks you know?

SplunkIsLife
Explorer
‎01-24-2019 01:30 PM

I write a monthly tips & tricks blog for Splunk users/consumers at my company but have steadily been running out of ideas. Anyone have anything they think is worth calling out? It can be as simple as a niche command, the idea of macros, alternatives to joins, really anything, fire away! The more the merrier. Thanks!

Tags (1)
0 Karma
Reply

SplunkIsLife
Explorer
‎01-24-2019 02:53 PM

eventstats, chart, appends, dashboards, _time manipulation, account settings, how to comment, permissions, cron, transforming commands, lookups, logTypes, regex, html panels, transpose, alternatives to joins, interesting fields, splunk toolbar, app enhancements.

I like the drilldowns idea! I don't use tstats much, i'll look into it. advanced use of lookups is | lookup or [ |inputlookup]?, don't use transaction super frequently but can look at that too. keep the ideas coming!

0 Karma
Reply

dflodstrom
Builder
‎01-24-2019 02:05 PM

What are some things you've already covered? Tstats is important, when to use stats instead of a transaction, "advanced" use of lookups, visualization tips like customizing drilldowns via the UI in later versions.

0 Karma
Reply
Get Updates on the Splunk Community!

Extending Observability Content to Splunk Cloud

Watch Now!   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to leverage ...

More Control Over Your Monitoring Costs with Archived Metrics!

What if there was a way you could keep all the metrics data you need while saving on storage costs?This is now ...

New in Observability Cloud - Explicit Bucket Histograms

Splunk introduces native support for histograms as a metric data type within Observability Cloud with Explicit ...