Splunk Search

Community Activity

	To set up alert using saved search and map command I have a saved search with 'n' number of results and I need to setup an alert mail for the results by creating an ale... by varsh_6_8_6 Explorer in Splunk Search 12-01-2023 0 0	0	0
	How to compare 2 lookups and highlight any changes ? Hi,Once a month we receive a file via email that we manually upload to Splunk as a lookup CSV file. The current proc... by tomapatan Contributor in Splunk Search 12-01-2023 0 0	0	0
	How to use predict command in tabular format? Hello All,I have data in the form of a table with two fields: index, sourcetype. Each row has unique pair of values f... by Taruchit Contributor in Splunk Search 12-01-2023 0 5	0	5
	How to change pie chart font color from within Splunk Studio (via Source Code or regular editing)? Good Afternoon,Currently, I'm submitting this message for help in regards to editing the font color for all labels in... by aocruz New Member in Splunk Search 11-30-2023 0 0	0	0
	Timepicker relative time in dashboard. Hi all! What I thought was going to be a fairly simple panel on a dashboard has been giving me fits. We have a globa... by jacobdavis Engager in Splunk Search 11-30-2023 0 3	0	3
	Nested inputlookup with where clause I am trying to build my own kvstore geo data, so far i can run\| inputlookup geobeta \| where endIPNum >= 1317914622 an... by MattKr Explorer in Splunk Search 11-30-2023 0 4	0	4
	Base64 Search decoder Not Working on all fields Hi All,So I've created the logic below to decode base64. Other discussions on this topic give possible solutions but ... by SD-SPL-4498 Observer in Splunk Search 11-30-2023 0 2	0	2
	Dynamically order in mvappend I have some data where I want to write the values of "test_n" (n in 1,2,...20) into a multivalue field and keep the ... by duesser Path Finder in Splunk Search 11-30-2023 0 2	0	2
	Average response time for group of API Hi Team, I want to create a splunk dashboard with the avearge response time taken by the all the API's wich follow th... by Harish429 Loves-to-Learn Lots in Splunk Search 11-30-2023 0 14	0	14
	Trying to combine data within the same table under certain conditions Hi all,First of all thank you for your time. I am quite new to splunk and I am struggling with this issue for some t... by Jimenez Explorer in Splunk Search 11-30-2023 0 5	0	5
	How to extract filename from inputlookup csv file with query I want to get my inputlookup csv filename with the query.\| inputlookup abc.csv\| stats count by inputlookup_filename ... by bimatomsoc Explorer in Splunk Search 11-29-2023 0 4	0	4
	how to cross good day.I am somewhat new to splunk, I am trying to generate a cross between some malicious IP s I have in a file. c... by 4nton10 Loves-to-Learn Lots in Splunk Search 11-29-2023 0 1	0	1
	Searching Nested JSON Data Using SPL and Splunk Search, I would like to search the logs array for each separate test_name and results and create... by nkavouris Path Finder in Splunk Search 11-29-2023 0 4	0	4
	How to add counts for "missing" values "Hey Splunk experts! I'm a Splunk newbie and working with data where running `stats count by status` gives me 'progre... by Muthu_Vinith Path Finder in Splunk Search 11-29-2023 0 18	0	18
	splunk summary index In the below screenshot, we can see that from November 6th onwards, there are three sources generated in Splunk; it s... by uagraw01 Motivator in Splunk Search 11-29-2023 0 17	0	17
	Joining two index searches and print the common results Dear team,I need to join the two-index search and print the common ID's count. The below mentioned two different inde... by parthiban Path Finder in Splunk Search 11-29-2023 0 8	0	8
	Parsing host names when a single rex doesn't fit all possible character combinations Is this even possible?! Any help will be appreciated.I need to search for specific text in a Windows host name that i... by interloper Engager in Splunk Search 11-28-2023 0 1	0	1
	latest time values in search query Hello Everyone,I have a query where a user selects a time range in the timetickerLet say 10 november 08:30am to 10 no... by venky1544 Builder in Splunk Search 11-28-2023 0 1	0	1
	tstats with count() works but dc() produces 0 results I'm using tstats on an accelerated data model which is built off of a summary index. Everything works as expected whe... by thisissplunk Builder in Splunk Search 11-28-2023 0 5	0	5
	splunk 6.1 error and cannot search : This pool has exceeded its configured poolsize splunk 6.1 error and cannot search : Error in 'litsearch' command: Your Splunk license expired or you have exceeded ... by jgauruder1 New Member in Splunk Search 11-28-2023 0 4	0	4
	Match IP's in Splunk against IP ranges in decimal format in CSV I have a field in Splunk that contains IPs such as 223.xx.xxx.1 query: index=traffic_logs ip_address=*\|timechart span... by spark2310 Explorer in Splunk Search 11-28-2023 0 4	0	4
	Is there a way to timewrap on stats for comparing data I am using below query for comparing todays, yesterday and 8days before data, when i use timechart command the timewr... by mikeyty07 Communicator in Splunk Search 11-28-2023 0 1	0	1
	Suppress results once a condition is met Hello, index=* "My-Search-String" \|rex "My-Regex"\| eval Status=if(like (my-rex-extractor-field,"xxx-yyyy%"), "FILE_... by raghul725 Explorer in Splunk Search 11-28-2023 0 13	0	13
	Alternative to streamstats+last I have this query, where I want to build a dataset from a variable and its 4 previous values. I can solve this like s... by duesser Path Finder in Splunk Search 11-28-2023 0 2	0	2
	having a doubt in splunk query I want to change the msg for a log i.e<list ><Header>.....</Header><status><Message>Thuihhh_4y3y27y234yy4 is pending<... by Chandrasekhar6 Explorer in Splunk Search 11-28-2023 0 2	0	2