Splunk Search

Ask a Question

Discussions

Thread Info

help me with search command

-------| eval test=if(condition,"INFO","Error") | search test if condition is true the search must be behave as --...

by Communicator in

How to add 2 different fields with under the same function?

Hi guys, I need to do add enter 2 different fields under the same function. The first is with an ACResponse specif...

by Path Finder in

how to check the average queries time entered by the user

Hi, Is there any way to find out how much time queries were taking to complete the job when the users enter the qu...

by Path Finder in

Viewstates Error when trying to save/clone/edit search

So we have a number of searches that cannot be saved or cloned due to viewstate errors. Many of them are accelerated ...

by Builder in

How do I only show results using a token of a multivalue field?

Hi all, I am new to using SPLUNK so please bare with me.... I have created a dashboard to utilise tokens in drop d...

by New Member in

Help in Regex

I have the field message - Method: Execute | Class: GetUsersByVinActivity message- Method: Execute | Class: DecodeVi...

by Builder in

How to trigger search based on a dynamic dropdown input?

I am trying to create a dropdown box to allow the user to select a host category (Like backend or frontend) and then ...

by Engager in

Timecharting delta by multiple fields

My Sample event every minute looks like this: 03/06/2017 15:19:00 -0500, app01:JVM1=12, app01:JVM2=6, app01:JVM3=9...

by Path Finder in

How to graph sum of overlapping values given start time and duration?

I've searched here for quite a while and didn't find what I'm looking for, or maybe I'm not wording it correctly... ...

by Engager in

Maximum length of an Index name

We are planning on some long and detailed index names. I'd like to know if there is a maximum length an Index name ca...

by Explorer in

How to fix one logfile with 3 different change-times?

Hello, I have the following problem with every logfile on splunk. I explain it with one logfile as example. Lo...

by Explorer in

Need help with regex in transforms.conf to find two words in an event

Hallo, i have to filter the following literals in an event and i am new in regex: user:info ifconfig both lite...

by Explorer in

How to create a single dashboard that will change the search for each panel based on a dropdown input option?

I have created 3 dashboards which displays performance metrics and client usage of the api. All 3 dashboards have the...

by Engager in

How to rename the X-axis points in my chart from month number to month name?

Hello, Right now on my line chart, the months are labelled as 1, 2, 3 - I would like them to be displayed as Jan, Feb...

by Path Finder in

How to compare index data with a lookup?

Hi, I have a lookup with URL's, I have to compare with the index data to find count of the URL's in list. How to e...

by Builder in

how to troubleshoot role restriction presidence

Somehow all users on my staging server are restricted to some kind of search term. When I do this each on any othe...

by Motivator in

How to generate a search that will only display results where a field contains some non-alphanumeric characters?

A field is named product. I want to produce a list of products in my source, which are not made up of only english al...

by Explorer in

How to get a table cell color to change depending on the field value?

Hi, I've looked at a few answers now and can't make heads or tails of it, but what I am trying to do is, if the v...

by Path Finder in

How to gather Results based on various variables

Still trying to brush the rust off my fingers, I have this search: index=nitros_servers sourcetype=_json OR source...

by Contributor in

How to generate a search to sort based on domain names and count the number of emails from the domain?

i have a search with multiple domains in the email address , i need to sort it based on domain names and number of em...

by Explorer in

How to generate a search to calculate new column value?

Sample data below. I need to compute the col_3 based on col_1. It should give me the running sum of col_2 but should ...

by New Member in

How do I also include the values which has stats count 0 in the table ?

I'm trying to get the usage of some values (say, xyz) by "stats count by xyz" where i am getting the results of xyz w...

by New Member in

How do I chart Windows logon and logoff per user by hour?

I get a nice table with the logon and logoff times per user using the following search - LogName=Security EventCo...

by Contributor in

How to use values in lookup table not as fields but as search strings?

Using lookup table to search events but having some issues: |inputlookup router_lookup | rename Router_Name as DEV...

by Communicator in

Search two fields in one csv lookup

I want to use fields two fields that i have inside the lookup, Inside my lookup i have "account" and "date" bas...

by Engager in

Get Updates on the Splunk Community!

Splunk Search

Discussions

help me with search command

How to add 2 different fields with under the same function?

how to check the average queries time entered by the user

Viewstates Error when trying to save/clone/edit search

How do I only show results using a token of a multivalue field?

Help in Regex

How to trigger search based on a dynamic dropdown input?

Timecharting delta by multiple fields

How to graph sum of overlapping values given start time and duration?

Maximum length of an Index name

How to fix one logfile with 3 different change-times?

Need help with regex in transforms.conf to find two words in an event

How to create a single dashboard that will change the search for each panel based on a dropdown input option?

How to rename the X-axis points in my chart from month number to month name?

How to compare index data with a lookup?

how to troubleshoot role restriction presidence

How to generate a search that will only display results where a field contains some non-alphanumeric characters?

How to get a table cell color to change depending on the field value?

How to gather Results based on various variables

How to generate a search to sort based on domain names and count the number of emails from the domain?

How to generate a search to calculate new column value?

How do I also include the values which has stats count 0 in the table ?

How do I chart Windows logon and logoff per user by hour?

How to use values in lookup table not as fields but as search strings?

Search two fields in one csv lookup

Building Reliable Asset and Identity Frameworks in Splunk ES

Cloud Monitoring Console - Unlocking Greater Visibility in SVC Usage Reporting

Automatic Discovery Part 3: Practical Use Cases

In Splunk studio, is it possible to populate a tex...

How can i export a list of all services in APM

Splunk Answers Content Calendar May 2025!

MLTKC how should i check jupyter notebook func in ...

ITSI thresholds: adaptive vs static

Splunk Search

Are you a member of the Splunk Community?

Discussions