Splunk Search

Community Activity

	addtotal ignoring a particular row Current output is attached in the image. i have one input lookup file file1.csv 1) Rows 2-4 are coming are coming fro... by surekhasplunk Communicator in Splunk Search 02-26-2018 0 4	0	4
	How do I include lower and upper limits in chart? Hello Spunk Community! I have a set of data when plotted it has the shape of a bell curve. I want this data plotted o... by rormond New Member in Splunk Search 02-26-2018 0 1	0	1
	I am not able to find a few lines of my data in Splunk If I see the file on the server, it has the data. But in splunk, I am able to see all the data except for a few lines... by varun99 Path Finder in Splunk Search 02-25-2018 0 3	0	3
	search the request if only it presents in certain date range I have a field called "request", I want to output all the log lines in history if the request value presents in certa... by gowithwind22 New Member in Splunk Search 02-25-2018 0 2	0	2
	IF with some conditionals I guys! i would like to count the fail and success logons on my SFTP. The events are Successfull Logins from differen... by jnahuelperez35 Path Finder in Splunk Search 02-25-2018 0 1	0	1
	transaction with 2 different valued ID's I have a set of wordpress tables I'm trying to build a transaction on. I have the following which is working well and... by BenThwaites Explorer in Splunk Search 02-25-2018 0 0	0	0
	Search query with like() func ignoring case Hey all, need some help to something I didn't manage and couldn't find any solution online. Assuming my data is of f... by zionsof Engager in Splunk Search 02-25-2018 0 5	0	5
	Can this query be made faster? I am trying to summarize network traffic logged by our firewall to determine the factors that have made our index usa... by MonkeyK Builder in Splunk Search 02-25-2018 0 1	0	1
	Table of results with transactions levels of durations Hi, how can we generate the below table statistics for transactions durations? X=duration Date, TotalNumberOfTrans... by niroren New Member in Splunk Search 02-25-2018 0 2	0	2
	Delete a search-time field after extraction I have a set of logs that require a pretty complex set of regexes to parse. The data has about 8 columns separated by... by _smp_ Builder in Splunk Search 02-24-2018 0 2	0	2
	best way to build asset inventory and compliance i wanted to build a list of assets and based on periodic searches update items we are checking for compliance such as... by gdavid Path Finder in Splunk Search 02-24-2018 0 1	0	1
	Creating a stacked bar chart I feel silly asking this question as I think it should be relatively straight forward, but I am not able to get the f... by BearMormont Path Finder in Splunk Search 02-24-2018 0 2	0	2
	IP address of current user? I'm trying to write a query to display the IP address of the current user. Anyone know how to do this? by matstap Communicator in Splunk Search 02-23-2018 0 3	0	3
	transaction function and deduping mv values Is there an efficient way to mvdedup on all fields at once? Result is from transaction. Rather not convert to stats... by mschellhouse Path Finder in Splunk Search 02-23-2018 0 3	0	3
	Find number of days between date and now() Hello trying something I assume is pretty easy just cant get it right for some reason. I have a field called "Due Da... by tkwaller_2 Communicator in Splunk Search 02-23-2018 0 2	0	2
	Why is summary index search returning duplicate and incorrect counts of data? Hi Team, I am populating the data in summary index using the following Splunk search index=data" \| sistats count a... by smaran06 Path Finder in Splunk Search 02-23-2018 0 8	0	8
	Get database Size per day and Total size of all databases I would like to get o/p as below I am using index=xxxx sourcetype="log" "Database =" AND "Size" host=xxxxx \| ev... by dpatiladobe Explorer in Splunk Search 02-23-2018 0 5	0	5
	geostat question for multiple indexes i have a unique type of column in 4 different indexes , but they all have similar latitude and longitude. can i sho... by jiaqya Builder in Splunk Search 02-23-2018 0 3	0	3
	Does Splunk support regex support with look behind and look ahead? Does Splunk support regex look behind and look ahead? Specifically, I have a log that has the following: CN=LastNam... by santorof Communicator in Splunk Search 02-23-2018 0 8	0	8
	lookup files for alert creating I have 3 lookup files. I want to take EmpNum from fiel1.csv searching for that in file2.csv to get the email id and ... by surekhasplunk Communicator in Splunk Search 02-23-2018 0 6	0	6
	Dedup case insensitive? When searching in our list of usernames that have logged in, I dedup the usernames but the results are case sensitive... by gascoynt Engager in Splunk Search 02-23-2018 0 1	0	1
	Why is the Time Picker searching by time rather than creation date? Hi, When I run a search I am using a time picker and select 24h, 7d, 30 and the search runs for this time. But I pul... by colinmchugo Explorer in Splunk Search 02-23-2018 0 10	0	10
	How can I extract nested JSON at index time as their own event? I am using the REST API to get a large sample of JSON data every minute from the Bittrex Exchange but I would like t... by DHastie Engager in Splunk Search 02-23-2018 0 1	0	1
	Create a Time Table with multiple 'by' fields I need a table that looks like a chart containing multiple 'by' values. sample output: time_bin, farmName, errorCou... by dreeck Path Finder in Splunk Search 02-22-2018 0 2	0	2
	How can I create color Tables based on Dynamic Values in Splunk 7? Hi I have the following data column_A column_B 10 20 15 5 16 100 I want to... by robertlynch2020 Influencer in Splunk Search 02-22-2018 0 3	0	3