Splunk Search

Community Activity

Why am I getting error "No appropriate protocol (protocol is disabled or cipher suites are inappropriate)" running a search through the Splunk Java SDK? I am getting the following error when I am running a search through the Splunk Java SDK: java.lang.RuntimeException:... by maximus_reborn Path Finder in Splunk Search 01-25-2017 0 7	0	7
Fields & Transforming Search Results Hello all, I am using the follow string: SEARCH TERM/MACROS HERE \| eval over = if (ttm_transaction_time>ttm_thres... by srw46 Path Finder in Splunk Search 01-25-2017 0 7	0	7
How do I find out how many times an offensive search ran in the past day/week? We have, what we believe to be an offensive search. How can we find out how many times it ran recently and by whom? by ddrillic Ultra Champion in Splunk Search 01-25-2017 0 2	0	2
How to search non-header CSV format data with Hunk? I am using Hunk 6.2.1 and I have some csv format data saved in my hadoop cluster which doesn't have csv header. By de... by cwl Contributor in Splunk Search 01-25-2017 1 2	1	2
Search without index not working I installed latest Splunk and added splunkforwarder to index log data. Everything looks fine except that search doesn... by aupadhya New Member in Splunk Search 01-25-2017 0 4	0	4
If two events occur X seconds apart ignore the first one Hi, I have a log file that reports an event twice. It is the exact same event except it is repeated 1 or 2 or 3 or ... by dbcase Motivator in Splunk Search 01-25-2017 0 5	0	5
how to Transform/regex on already extracted field within same app? We have a ready made app with the configs in "default" (props & transforms). The existing content is [organisational... by koshyk Super Champion in Splunk Search 01-25-2017 0 5	0	5
Can one search trigger another? Hi, Is there a way for one search, once it's complete, to trigger another search? by a212830 Champion in Splunk Search 01-25-2017 2 8	2	8
How to generate a search to compare license usage for an index? Hi, We want to track our Top N users of license by index, and then compare it to yesterday (and possibly alert on ma... by a212830 Champion in Splunk Search 01-25-2017 0 14	0	14
How exclude lists of hosts from search using lookup table? Good morning, I've looked at some search topics here and haven't been successful in finding a working solution. I h... by SplunkLunk Path Finder in Splunk Search 01-25-2017 0 7	0	7
Is there a limit on the number of selected or interesting fields in Splunk? Hi, I have a log statement with almost 100 fields. When searched, it doesn't show all the fields in Selected fields... by Kukkadapu Path Finder in Splunk Search 01-25-2017 0 10	0	10
Table message when No results found. How to print a custom message in a table when No results found, when no logs? example search: index=test \| eval msg... by mewtwo Explorer in Splunk Search 01-25-2017 2 11	2	11
How to list non common fields of two table Hi Team, I am looking to find out a solution where in i have two tables and i am interested in listing out only thos... by ashish9433 Communicator in Splunk Search 01-25-2017 0 4	0	4
How to build a dashboard for SM9 Incident Reports (CSV File Dump)? Hi Team, I am very new to Splunk and don't have any development knowledge in building the dashboard. We want to do t... by kranthi83 New Member in Splunk Search 01-24-2017 0 1	0	1
how to create each key as a separate field and with value? Hi, i have an output something like below, how can we create each key as a separate field and with value? IFACE rxpck... by rajgowd1 Communicator in Splunk Search 01-24-2017 0 11	0	11
Using maxHotSpanSecs of 1 hour or 1 day generated too many buckets Following this advice, I decided to rotate my hot buckets every hour. (each bucket should contains only 1 hour of da... by yannK Splunk Employee in Splunk Search 01-24-2017 1 2	1	2
What value of dest_key should be used for custom field extractions? During index time field extractions, what value of DEST_KEY should be used for custom field extractions as there is ... by ankithreddy777 Contributor in Splunk Search 01-24-2017 0 1	0	1
How to write a search to show count values per hour _time bins for the last 12 hours as columns, sorted by a specific field? Is it possible to write a search to show count values per hour '_time' bins for the last 12 hours as columns, sorted ... by matthewb4 Path Finder in Splunk Search 01-24-2017 1 7	1	7
How to evaluate an arithmetic difference between two consecutive events Hi all, I would like to evaluate the difference between two events (in theory the events contain completely differen... by rootto Explorer in Splunk Search 01-24-2017 1 3	1	3
How to add an "eval" command to my search in order to apply "eventstats" variables? I have the following search for my email in which I pull the number of events per Recipient Address by Sender Address... by jwalzerpitt Influencer in Splunk Search 01-24-2017 0 22	0	22
How to edit my search that retrieves the start and end time of user from Active Directory logs? Hi How to get the start time and end time of the user from AD logs, The result which I need is user "logon time"... by kiran331 Builder in Splunk Search 01-24-2017 0 2	0	2
How to generate a search that will match an extracted field with a column name in my CSV lookup? ![alt text][1]Hello Splunkers, I have a search which has some extracted fields and I am trying to match one of the e... by vrmandadi Builder in Splunk Search 01-24-2017 0 11	0	11
How to edit my search to avoid overlapping events from occurring in timeline? Hi all! I have something which sends me the START and the STOP of some processes. I have this search that creates a... by andreafebbo Communicator in Splunk Search 01-24-2017 1 17	1	17
Boolean Query Hi. The following query doesn't seem to work for me. sourcetype="vendor_sales" VendorCountry=("United States" AND "... by aoliullah Path Finder in Splunk Search 01-24-2017 0 2	0	2
How to develop a line chart that counts each subdirectory in the URL? Hello Guys, I have 3 different directory in the same URL, for example: https://anydns.com:443/event/anyother.x... by jandresaedo Engager in Splunk Search 01-24-2017 0 3	0	3