Splunk Search

Community Activity

	Inputlookup append=true vs append [\|inputlookup ] behavior difference I saw a previous question dealing with this, but that question never got an accepted answer, and I think it was suffi... by elliotproebstel Champion in Splunk Search 02-26-2018 0 7	0	7
	How can I extract the regex statement that captures every line under a field until the empty line that divides the lists? List of policies: policy1 policy2 policy3 Another list: something1 something2 How can I extract the each name... by MedralaG Communicator in Splunk Search 02-26-2018 0 2	0	2
	Regex AND Operator I thought ?= acts like an AND operator. Condition would be to capture words with >5 Upper-Case AND 4 Lower-Case an... by subtrakt Contributor in Splunk Search 02-26-2018 0 7	0	7
	What is the best way to calculate date and time span? Hello What I am trying to do is calulate dates and span. So I have a date called "Date Due" and a field "SLA". What ... by tkwaller_2 Communicator in Splunk Search 02-26-2018 0 2	0	2
	Eval=case not working Probably a simple one but......my Eval case statement does not seem to work correctly ...\| eval operation=case(TagV... by stevenbutterwor Path Finder in Splunk Search 02-26-2018 0 3	0	3
	iframes and views Hi Team, We got a request to enable x_frame_options_sameorigin = [False] . Since currently they couldn't able to vi... by anandhalagarasa Path Finder in Splunk Search 02-26-2018 0 3	0	3
	Joining two records from a csv file based on a column I am working on a monitoring tool where in I have to monitor the job completion and calculate the estimates in accor... by madakkas Explorer in Splunk Search 02-26-2018 0 5	0	5
	whats the rex command to filter the special characters and extract only required fields? Hello experts, logs looks something like this.. (java.lang.RuntimeException: java.util.concurrent.ExecutionExceptio... by guru89044 Explorer in Splunk Search 02-26-2018 0 9	0	9
	addtotal ignoring a particular row Current output is attached in the image. i have one input lookup file file1.csv 1) Rows 2-4 are coming are coming fro... by surekhasplunk Communicator in Splunk Search 02-26-2018 0 4	0	4
	How do I include lower and upper limits in chart? Hello Spunk Community! I have a set of data when plotted it has the shape of a bell curve. I want this data plotted o... by rormond New Member in Splunk Search 02-26-2018 0 1	0	1
	I am not able to find a few lines of my data in Splunk If I see the file on the server, it has the data. But in splunk, I am able to see all the data except for a few lines... by varun99 Path Finder in Splunk Search 02-25-2018 0 3	0	3
	search the request if only it presents in certain date range I have a field called "request", I want to output all the log lines in history if the request value presents in certa... by gowithwind22 New Member in Splunk Search 02-25-2018 0 2	0	2
	IF with some conditionals I guys! i would like to count the fail and success logons on my SFTP. The events are Successfull Logins from differen... by jnahuelperez35 Path Finder in Splunk Search 02-25-2018 0 1	0	1
	transaction with 2 different valued ID's I have a set of wordpress tables I'm trying to build a transaction on. I have the following which is working well and... by BenThwaites Explorer in Splunk Search 02-25-2018 0 0	0	0
	Search query with like() func ignoring case Hey all, need some help to something I didn't manage and couldn't find any solution online. Assuming my data is of f... by zionsof Engager in Splunk Search 02-25-2018 0 5	0	5
	Can this query be made faster? I am trying to summarize network traffic logged by our firewall to determine the factors that have made our index usa... by MonkeyK Builder in Splunk Search 02-25-2018 0 1	0	1
	Table of results with transactions levels of durations Hi, how can we generate the below table statistics for transactions durations? X=duration Date, TotalNumberOfTrans... by niroren New Member in Splunk Search 02-25-2018 0 2	0	2
	Delete a search-time field after extraction I have a set of logs that require a pretty complex set of regexes to parse. The data has about 8 columns separated by... by _smp_ Builder in Splunk Search 02-24-2018 0 2	0	2
	best way to build asset inventory and compliance i wanted to build a list of assets and based on periodic searches update items we are checking for compliance such as... by gdavid Path Finder in Splunk Search 02-24-2018 0 1	0	1
	Creating a stacked bar chart I feel silly asking this question as I think it should be relatively straight forward, but I am not able to get the f... by BearMormont Path Finder in Splunk Search 02-24-2018 0 2	0	2
	IP address of current user? I'm trying to write a query to display the IP address of the current user. Anyone know how to do this? by matstap Communicator in Splunk Search 02-23-2018 0 3	0	3
	transaction function and deduping mv values Is there an efficient way to mvdedup on all fields at once? Result is from transaction. Rather not convert to stats... by mschellhouse Path Finder in Splunk Search 02-23-2018 0 3	0	3
	Find number of days between date and now() Hello trying something I assume is pretty easy just cant get it right for some reason. I have a field called "Due Da... by tkwaller_2 Communicator in Splunk Search 02-23-2018 0 2	0	2
	Why is summary index search returning duplicate and incorrect counts of data? Hi Team, I am populating the data in summary index using the following Splunk search index=data" \| sistats count a... by smaran06 Path Finder in Splunk Search 02-23-2018 0 8	0	8
	Get database Size per day and Total size of all databases I would like to get o/p as below I am using index=xxxx sourcetype="log" "Database =" AND "Size" host=xxxxx \| ev... by dpatiladobe Explorer in Splunk Search 02-23-2018 0 5	0	5