Splunk Search
×
Are you a member of the Splunk Community?
Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
- Find Answers
- :
- Using Splunk
- :
- Splunk Search
- :
- Re: How can I extract specified fields from the lo...
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark Topic
- Subscribe to Topic
- Mute Topic
- Printer Friendly Page
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
tankhanandita
Explorer
07-21-2016
04:15 PM
I have created a UI which loads the user selected log file in Splunk. Now I have to extract some fields from that file and display that in a table format. How can I do it?
For the UI, I am using jsp and servlets.
1 Solution
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
woodcock
Esteemed Legend
07-22-2016
07:00 AM
Just run a search with something like this:
index=YourIndexHere | table YourFieldOne YourFieldTwo
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
woodcock
Esteemed Legend
07-22-2016
07:00 AM
Just run a search with something like this:
index=YourIndexHere | table YourFieldOne YourFieldTwo
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
tankhanandita
Explorer
07-22-2016
08:44 AM
Thank you so much for your help. I did the same thing. It was a careless mistake i was trying to wrong fields from the log files.
Again thank u very much.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
tankhanandita
Explorer
07-22-2016
09:03 AM
I have another question.Kindly help on this one also
I have extracted certain feilds using java sdk from splunk with the table command. How can i view that data as a table in my java form.
or
The data extracted is in the form of job. How can i convert that data into string, so that i can apply conditional operators on that data.
Thanks in advance for your help.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
woodcock
Esteemed Legend
07-22-2016
10:01 AM
You are better off clicking Accept on this question and asking a new one. At this point, you and I are probably the only ones listening and you need a broader audience.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
tankhanandita
Explorer
07-22-2016
08:05 AM
But what if my index contains multiple files that have some common fields and i only want to retrieve the data from one file and not all the files?
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
woodcock
Esteemed Legend
07-22-2016
08:21 AM
This is basic stuff.
index=YourIndexHere source=MyOneSourceFileHere | table YourFieldOne YourFieldTwo
Get Updates on the Splunk Community!
Dashboards: Hiding charts while search is being executed and other uses for tokens
There are a couple of features of SimpleXML / Classic dashboards that can be used to enhance the user ...
Splunk Observability Cloud's AI Assistant in Action Series: Explaining Metrics and ...
This is the fourth post in the Splunk Observability Cloud’s AI Assistant in Action series that digs into how ...
Brains, Bytes, and Boston: Learn from the Best at .conf25
When you think of Boston, you might picture colonial charm, world-class universities, or even the crack of a ...
