Knowledge Management

Community Activity

Is there anything wrong with my saved Search? I have identified a saved search located in savedsearches.conf, the main search in macros.conf works fine and outputs... by Dark_Ichigo Builder in Knowledge Management 03-20-2013 0 2	0	2
How to determine the data volume associated to a group of hosts? I have data comming into the corporate indexers from several business units (BU). Given a list of hosts owned by eac... by olopez77 Explorer in Knowledge Management 03-20-2013 0 2	0	2
Splunk on a read only file system All, We have an application server which has a vendor requirement to operate in read only. We can install taking in... by daniel333 Builder in Knowledge Management 03-19-2013 0 1	0	1
Allowing a role to write to a non-standard summary index I have created a new summary index (let's call it summary_example) so that we can use it in an app as a destination f... by willthames2 Path Finder in Knowledge Management 03-12-2013 1 2	1	2
Splunk-system-user Report Acceleration Search Stuck I am running 5.0.1 on Ubuntu Server Every so often we get a stuck Report Acceleration Summarize search. For example, ... by alacercogitatus SplunkTrust in Knowledge Management 03-12-2013 1 2	1	2
how to change the threshold of the google map When i use google map,i found when the count bigger than 100, the color will become red, how can i change the thresho... by perlish Communicator in Knowledge Management 03-08-2013 0 2	0	2
How can I use the arg value defined in redirector view in three different search strings. Hi, I am using Google map. code is below <module name="ConvertToIntention"> <param name="settingToConvert">maps.d... by Aakanksha Path Finder in Knowledge Management 03-06-2013 1 4	1	4
Do I Need an Event Type For This? I'm trying to figure out the best architecture for what I'm trying to do. My base question is whether I need an event... by barne_dn Explorer in Knowledge Management 02-25-2013 0 2	0	2
Is it possible to use fusion charts in splunk dashboards? Is it possible to combine fusion charts with Splunk? Fusion charts are created in simplified XML , in Splunk it is po... by renuka13 Explorer in Knowledge Management 02-25-2013 0 13	0	13
How to define a macro with source filename in argument Hi, Thanks to tell me how to replace following search: index=myIndex source="E:\\myApp\\Logs\\myFile.csv" by a ma... by emcathalo New Member in Knowledge Management 02-24-2013 0 1	0	1
Summary Index Setup, Now How to Load Old Data? I am using the following query to load firewall data into a summary index I've created: host="aegis1.grc.nasa.gov" \|... by aferone Builder in Knowledge Management 02-22-2013 0 1	0	1
Difference between splunk DB connect and Splunk MYSQL connector What is the Difference between splunk DB connect and Splunk MYSQL connector? by rupali12 Explorer in Knowledge Management 02-20-2013 0 4	0	4
summary index not populated I try to make a search with a timechart , run it every 15 minutes, and indexing the result. Query works, and returns... by sbsbb Builder in Knowledge Management 02-18-2013 1 6	1	6
real-time monitoring on indexes , indexed summary I have a couple of fields that I want to being able to search very quickly, because they are in XML files, and at sea... by sbsbb Builder in Knowledge Management 02-17-2013 1 2	1	2
inputlookup in a macro Can someone please explain why this will work as a search but not as a macro? Working search \| inputlookup customer... by phoenixdigital Builder in Knowledge Management 02-15-2013 2 5	2	5
can a ConvertToIntention work on a HiddenPostProcess? (splunk 4.2) I have a base search from a HiddenSavedSearch. I then use a HiddenPostProcess to chart the results. Then... by tsmithsplunk Path Finder in Knowledge Management 02-05-2013 2 7	2	7
Perform calculations on a count of EventTypes I have having trouble performing basic calculations using Eval. I can do '2*2' but I cannot do this with a count of e... by sportauthority New Member in Knowledge Management 02-04-2013 0 3	0	3
Chrome reported as Safari in Browser Stats Report It looks like Chrome is being reported as Safari in the "Browser Stats" report in the Web Intelligence app. I think ... by mapugh73 Engager in Knowledge Management 02-01-2013 1 1	1	1
Is it possible to dynamically reload a new/updated tags.conf file? We would love it if there was a REST endpoint or way to create and update tags similar to the way we refreshed fields... by hulahoop Splunk Employee in Knowledge Management 01-31-2013 1 4	1	4
Almost 50% of Splunk Documentation is missing It's getting worse and worse. Many many Google links, search links, Splunk Answers links, are all leading to missing ... by jumper4000 Explorer in Knowledge Management 01-25-2013 0 5	0	5
Summary view of data - after an year How can i store some data permanently in Hot bucket for my summary view analysis ? Points : -after 6 months or an y... by chimbudp Contributor in Knowledge Management 01-17-2013 0 1	0	1
Specified field(s) missing from results when searching summary index I have this simple search: search index="summary" revenue=daily \| timechart avg(daily) by sitename ...which as yo... by acobster Explorer in Knowledge Management 01-09-2013 1 4	1	4
Learning Splunk Hi All, Im very new to splunk. I would like to know if there are any video or text materials i can refer to apart fr... by chamil3001 Explorer in Knowledge Management 01-09-2013 0 4	0	4
Need help in Summary Indexing Hello I am using a summary indexing to get a chart but it doesn't look like its helping much. I need to have a chart... by theouhuios Motivator in Knowledge Management 01-08-2013 0 4	0	4
Is there a way to extract single count values from sistats summary data? At the end of a long search that goes into a summary index we capture counts of events by site using sistats: \| sist... by systemjack Explorer in Knowledge Management 01-02-2013 0 1	0	1