Splunk Search

Community Activity

	How to extract using rex I want to extract the below contractWithCustomers and contracts using rex named as entity . For ID 1349c1f4-989c-4... by avi7326 Path Finder in Splunk Search 10-26-2023 0 3	0	3
	Why does strptime not parse timestamps to nanoseconds (%9N/%9Q)? Splunk Enterprise 9.0.5.1Hello!I have to calculate the delta between two timestamps that have nanosecond granularity.... by andrewtrobec Motivator in Splunk Search 10-26-2023 0 1	0	1
	API /timeserieswindow endpoint returns 400 When I call:https://api.{REALM}.signalfx.com/v1/timeserieswindowwith my access token as header: X-SF-TOKENI receive:{<!-- -->... by PiotrSekula New Member in Splunk Search 10-26-2023 0 0	0	0
	How to replace blank with "NA" while using Rex command I am extracting these three values and if there is any empty value in any of the fields, it returns as no result.How ... by manojchacko78 Path Finder in Splunk Search 10-26-2023 0 2	0	2
	Use Subsearch to insert commands Hello,I would like to use a subsearch to literally paste a command into the SPL e.g.: \| makeresults [\| makeresults \|... by duesser Path Finder in Splunk Search 10-26-2023 0 8	0	8
	Need to use 2 time range pickers in a single query I have a query to retrieve user experience metrics from Dynatrace index. Wanted to compare the response times for 2 d... by sabari80 Explorer in Splunk Search 10-26-2023 0 7	0	7
	How can I add metadata to events at the forwarder? I'd like to add metadata to my events at the source and change the _meta value periodically without restarting the fo... by rphillips_splk Splunk Employee in Splunk Search 10-26-2023 0 7	0	7
	Extract multiple groups (rex), key/value pairs comma separated I'm looking for the regular expression wizards out there. I need to do a rex with two capture groups: one for name, a... by ejwade Contributor in Splunk Search 10-26-2023 0 2	0	2
	Is there a way to encrypt sensitive data in index time and decrypt it in search time in Splunk? Hi folks, Is there a way to encrypt sensitive data in index time and decrypt it in search time in Splunk ?if yes, how... by human96 Communicator in Splunk Search 10-26-2023 0 8	0	8
	Having timestamp at the end of json entry - cannot view other fields Hi,I am trying to upload elastic log file to splunkthis is an example of one entry in a long log:{"_index":"index-00"... by yossieven New Member in Splunk Search 10-26-2023 0 3	0	3
	stats count Hello again splunk expertsThis is my current situation:-job_no field4131 string1 ... by splunk_novice99 Explorer in Splunk Search 10-25-2023 0 2	0	2
	Change a metadata value programaticaly Hi everyone,Do you know a way to change the value of a metadata for a universal forwader ?I add my own metadata with ... by michaelissartel Explorer in Splunk Search 10-25-2023 0 2	0	2
	Query with an additional condition Hi!Faced with writing a query with an additional check and I can't find a way out. I will be glad if you tell me the ... by ivan123357 Explorer in Splunk Search 10-25-2023 0 2	0	2
	Multiple Values for open ports, trying to table only the open ones I was asked to create a query that will allow the user to see only the open ports. An example log looks something lik... by Abass42 Communicator in Splunk Search 10-25-2023 0 5	0	5
	how to get a customized table I have a query and i need to show the logs as shown in the below image.Total Messages: index=app-logs " Request rec... by Ash1 Communicator in Splunk Search 10-25-2023 0 5	0	5
	Execute Oracle Procedure from Splunk DB Connect Version:3.6.0 I am using DB Connect Version:3.6.0I am trying to execute an Oracle procedure from DB Connect The Oracle procedure re... by MikeyD100 Explorer in Splunk Search 10-25-2023 0 5	0	5
	How to display Avg of Users per Time Picker? Hello! I'm trying to figure out a way to display a single value that calculates users who have disconnected divided ... by Madmax Path Finder in Splunk Search 10-25-2023 0 12	0	12
	CPU time delta calculation Hi i have the below data _timeSQL_IDNEWCPUTIME2023-10-25T12:02:10.140+01:00ABCD155.422023-10-25T11:57:10.140+01:00AB... by vk1544 Explorer in Splunk Search 10-25-2023 0 1	0	1
	Chart with textual / string / enumerative Y axis tick labels (such as "off" / "on") instead of numbers Is it possible to display textual (string) values instead of numbers on the Y axis?I have a time series with a field ... by rikinet Path Finder in Splunk Search 10-25-2023 0 0	0	0
	Timechart presentation Hi,Not sure how to fix continius bar between login and logout. As you can see on picture it's marked as login, lot of... by gjhaaland Explorer in Splunk Search 10-25-2023 0 2	0	2
	How to use 2 columns in one join search Hi,I have a query that trigger when a user has been added to a specific types of groups.The query depends on lookup w... by Eyal Path Finder in Splunk Search 10-25-2023 0 2	0	2
	Reuse search query, but conditionally Hi, I have a 'complex' (for me at least) question. What I want to achieve is the following: 1) index=abc msg="*fire... by bitnoise Explorer in Splunk Search 10-25-2023 0 3	0	3
	Splunk Table Query These are the sample parameters for index, host, sourceindex="production"host="abc.com-i-1234"source="Log-*-3333-abc4... by Awanish1212 Explorer in Splunk Search 10-24-2023 0 2	0	2
	Can multiple wildcards be used in serverclass.conf whitelist Can multiple wildcards be used in serverclass.conf whitelist file? whitelist.from_pathname = /lookup/host.txt Example... by cloroxx Explorer in Splunk Search 10-24-2023 0 2	0	2
	Host Metrics with associated indexes We're using this query to retrieve metrics on our hosts: index=_internal source=*metrics.log group=tcpin_connections ... by WebNerdNick Engager in Splunk Search 10-24-2023 0 6	0	6