Find Answers

Find Answers
Ask questions. Get answers. Find technical product solutions from passionate members of the Splunk community.
Category Activity
Splunk_U
I have a search string (given below). Now I want to declare a variable named Os_Type, which based on the source type,...
by Splunk_U Path Finder in Splunk Search 01-10-2016
1 8
1
8
rgomatha
I have gone through the docs: routing based on meta data (source, host, sourcetype) to send specific data to a differ...
by rgomatha Explorer in Getting Data In 01-10-2016
1 1
1
1
CREVITCH
How do I select different sourcetypes for multiple logs coming from multiple servers (no universal forwarders, using ...
by CREVITCH Path Finder in Getting Data In 01-10-2016
0 3
0
3
peterkn
I need to do calculations on fields where the Date is 3 years ago. However, there is a twist. I need to find this fie...
by peterkn Explorer in Splunk Search 01-10-2016
0 2
0
2
perreau
I went for the upgrade head first and did it via the GUI and now I had to give everyone full permission to the app to...
by perreau New Member in All Apps and Add-ons 01-10-2016
0 3
0
3
mbond81
I've scoured the Docs and Answers and haven't had any luck modifying their solutions to fit mine including streamstat...
by mbond81 Engager in Splunk Search 01-10-2016
0 1
0
1
hgafarov
Good day. I can't get any info about how I can do this. When I add input from UDP, I can't see the pfsense sourcety...
by hgafarov Engager in All Apps and Add-ons 01-10-2016
1 4
1
4
GauriSplunk
I have created a role which has only write permissions and no read permissions for an app. When I try to log in , it ...
by GauriSplunk Path Finder in Security 01-09-2016
0 1
0
1
Rocky31
The port 9997 is enabled, data hitting the Heavy Forwarder. How to validate specific data and IP address?
by Rocky31 Path Finder in Getting Data In 01-09-2016
0 4
0
4
strive
Hi, System Details: System Type: Virtual Machine Total CPUs: 8 vCPUs (4 cores. 4 * 2 = Total Users: 1 The overridd...
by strive Influencer in Splunk Search 01-09-2016
0 2
0
2
metalgear138
So basically, I'm looking to effectively export/retrieve all content from Settings>Searches, Reports, and Alerts. Bas...
by metalgear138 Engager in Alerting 01-09-2016
0 2
0
2
mattkun
Hi, We have a search that retrieves data for the last 24 hours and will send a CSV to an email distribution list. I...
by mattkun New Member in Getting Data In 01-09-2016
0 2
0
2
a212830
Hi, I have a request from a customer to encrypt their feed to Splunk. The doc looks pretty simple, but after readi...
by a212830 Champion in Getting Data In 01-09-2016
0 2
0
2
cmodyssey
Hi, I have the below example XML to scrape: <COOK> <COOK_NAME>Cook</COOK_NAME> <COOK_TEMP>738</CO...
by cmodyssey Explorer in All Apps and Add-ons 01-09-2016
0 7
0
7
andrearodrigues
Hi, In a distributed mode with 1 search head and 4 indexers, when making a search through the search head, 2 of the ...
by andrearodrigues Explorer in Splunk Search 01-09-2016
1 2
1
2
mattkun
I am now very new to Splunk. I have installed a Splunk forwarder to monitor Window Security Logs, but would like also...
by mattkun New Member in Splunk Search 01-08-2016
0 2
0
2
Imjusttesting
I'm using the Route Map Demo App for one of my designs. Does Shapester allow me to draw and set up geofencing within ...
by Imjusttesting Explorer in All Apps and Add-ons 01-08-2016
0 21
0
21
juliim
Hi, Is there way to disable the gzipping of output file. We would like to monitor the file, but it is not possible i...
by juliim New Member in All Apps and Add-ons 01-08-2016
0 1
0
1
casieowen
Hi, I need to be able to: 1) use splunk's visualization capabilities (like those available after querying event data...
by casieowen Engager in All Apps and Add-ons 01-08-2016
0 5
0
5
michaeloleary
Hey Folks, http://docs.splunk.com/Documentation/Splunk/latest/admin/Eventhashing After reading the documentation on...
by michaeloleary Path Finder in Getting Data In 01-08-2016
3 1
3
1
athorat
Hi I am displaying a table which shows: table JobName, jobid, start, end ,diff using the following search. How ...
by athorat Communicator in Splunk Search 01-08-2016
0 2
0
2
thegeekthedude
We have a system where, when a service name (a unique service name referenced by service=service_N where N=1 to 20) d...
by thegeekthedude New Member in Splunk Search 01-08-2016
0 1
0
1
Splunkey_
I am looking for some help with a search. Below is an alert that runs every hour. It looks for some stuff in a index...
by Splunkey_ New Member in Splunk Search 01-08-2016
0 10
0
10
athorat
Events should be split for each date, which is not happening for one of the forwarders: The following is the part of...
by athorat Communicator in Getting Data In 01-08-2016
0 9
0
9
slrobeson
We are new to Splunk and are trying it before we buy it. I am having trouble getting Splunk to monitor the individual...
by slrobeson Engager in Getting Data In 01-08-2016
0 1
0
1
Splunk Learning

Splunk has training and education options for everyone, whether it's your first or fiftieth deployment.

Get Started

Announcements
Register for Upcoming Live Tech Talks! Security and Observability Editions are held every month.

How digitally resilient are you? Take a quick Digital Resilience Assessment to find out if you're prepared for disruption!
Get Updates on the Splunk Community!

The Payment Operations Wake-Up Call: Why Financial Institutions Can't Afford ...

The same scenario plays out across financial institutions daily. A payment system fails at 11:30 AM on a busy ...

Make Your Case: A Ready-to-Send Letter for Getting Approval to Attend .conf25

Hello Splunkers, Want to attend .conf25 in Boston this year but not sure how to convince your manager? We've ...

Community Spotlight: A Splunk Expert's Journey

In the world of data analytics, some journeys leave a lasting impact not only on the individual but on the ...
Top Karma Authors