Splunk Search

Community Activity

	Change a metadata value programaticaly Hi everyone,Do you know a way to change the value of a metadata for a universal forwader ?I add my own metadata with ... by michaelissartel Explorer in Splunk Search 10-25-2023 0 2	0	2
	Query with an additional condition Hi!Faced with writing a query with an additional check and I can't find a way out. I will be glad if you tell me the ... by ivan123357 Explorer in Splunk Search 10-25-2023 0 2	0	2
	Multiple Values for open ports, trying to table only the open ones I was asked to create a query that will allow the user to see only the open ports. An example log looks something lik... by Abass42 Communicator in Splunk Search 10-25-2023 0 5	0	5
	how to get a customized table I have a query and i need to show the logs as shown in the below image.Total Messages: index=app-logs " Request rec... by Ash1 Communicator in Splunk Search 10-25-2023 0 5	0	5
	Execute Oracle Procedure from Splunk DB Connect Version:3.6.0 I am using DB Connect Version:3.6.0I am trying to execute an Oracle procedure from DB Connect The Oracle procedure re... by MikeyD100 Explorer in Splunk Search 10-25-2023 0 5	0	5
	How to display Avg of Users per Time Picker? Hello! I'm trying to figure out a way to display a single value that calculates users who have disconnected divided ... by Madmax Path Finder in Splunk Search 10-25-2023 0 12	0	12
	CPU time delta calculation Hi i have the below data _timeSQL_IDNEWCPUTIME2023-10-25T12:02:10.140+01:00ABCD155.422023-10-25T11:57:10.140+01:00AB... by vk1544 Explorer in Splunk Search 10-25-2023 0 1	0	1
	Chart with textual / string / enumerative Y axis tick labels (such as "off" / "on") instead of numbers Is it possible to display textual (string) values instead of numbers on the Y axis?I have a time series with a field ... by rikinet Path Finder in Splunk Search 10-25-2023 0 0	0	0
	Timechart presentation Hi,Not sure how to fix continius bar between login and logout. As you can see on picture it's marked as login, lot of... by gjhaaland Explorer in Splunk Search 10-25-2023 0 2	0	2
	How to use 2 columns in one join search Hi,I have a query that trigger when a user has been added to a specific types of groups.The query depends on lookup w... by Eyal Path Finder in Splunk Search 10-25-2023 0 2	0	2
	Reuse search query, but conditionally Hi, I have a 'complex' (for me at least) question. What I want to achieve is the following: 1) index=abc msg="*fire... by bitnoise Explorer in Splunk Search 10-25-2023 0 3	0	3
	Splunk Table Query These are the sample parameters for index, host, sourceindex="production"host="abc.com-i-1234"source="Log-*-3333-abc4... by Awanish1212 Explorer in Splunk Search 10-24-2023 0 2	0	2
	Can multiple wildcards be used in serverclass.conf whitelist Can multiple wildcards be used in serverclass.conf whitelist file? whitelist.from_pathname = /lookup/host.txt Example... by cloroxx Explorer in Splunk Search 10-24-2023 0 2	0	2
	Host Metrics with associated indexes We're using this query to retrieve metrics on our hosts: index=_internal source=*metrics.log group=tcpin_connections ... by WebNerdNick Engager in Splunk Search 10-24-2023 0 6	0	6
	How to get a list of all hosts across all indexes if we cannot use index=* (restricted by workload rule) Hi,We need to find all the hosts across all the indexes , but we cannot use index=* anymore, as it's use is restrict... by mlevsh Builder in Splunk Search 10-24-2023 0 3	0	3
	How to format table range per week automatically? Reading through the documentation here: http://docs.splunk.com/Documentation/Splunk/7.0.2/Viz/TableFormatsFormatting ... by efavreau Motivator in Splunk Search 10-24-2023 0 7	0	7
	Stats command error index=abcd \| stats count(eval(searchmatch(''https://drive.google.com/uc?export=download&id=1HGFF5ziAFGn8161CKQC$Xyuhn... by yasit Explorer in Splunk Search 10-24-2023 0 6	0	6
	filter a table result Hi - i'm not great at Splunk and am struggling with this one:I have this search result in table formNameStatusServer1... by trifledalliance Engager in Splunk Search 10-24-2023 0 2	0	2
	Splunk Head command Hi All, Splunk "head" command by default retrieves top 10 columns and 10 results. may i know if we can control the nu... by SplunkSN Loves-to-Learn Everything in Splunk Search 10-24-2023 0 3	0	3
	How to get latest upload data.I am uploading csv file into splunk. I am uploading csv file format data into splunk. every time I make change to the data or add any info I will update t... by abi2023 Path Finder in Splunk Search 10-23-2023 0 5	0	5
	How to fix Error inputlookup? I have an issues with lookup, i create a table I want to exclude path in lookup table from my search, so i try this... by abazgwa21cz Explorer in Splunk Search 10-23-2023 0 7	0	7
	How to create total average/median/max of field in a separate table? How to create total average/median/max of field in a separate table?Thank you in advance\| index=testindex\| table comp... by LearningGuy Motivator in Splunk Search 10-23-2023 0 6	0	6
	Is it possible to make y-axis labels display "on" and "off" instead of numerical values on my chart? I have the following graph: On the y-axis, 0 is on and 10 is off. Can I label it accordingly, but still present it... by HattrickNZ Motivator in Splunk Search 10-23-2023 0 4	0	4
	Need help on splunk search to get process status when stopped by using PID Hi All,i am using below search to monitor a status of process based on PID and usage we have tried by stopping the se... by sekhar463 Path Finder in Splunk Search 10-23-2023 0 5	0	5
	Check if domain is found in local lookup file containing over 10 000 entries Hi all,I been working on new rule and I just can't get it work fully. I know that there are many similar questions/an... by licroBI_0x1 Explorer in Splunk Search 10-23-2023 0 2	0	2