Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Splunk Search
Splunk Search
×
Are you a member of the Splunk Community?
Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Using Splunk
- :
- Splunk Search
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | We are using a search head cluster and we are having an issue with the following workflow. A user has lookup table th... by ebailey Communicator in Splunk Search 08-31-2016 1 2 | 1 | 2 | |
 |  Given a search: index="muni" | nbclosest | timechart span=30m dc(vehicle_id) as NumVehicles (where nbclosest is a ... by plucas_splunk Splunk Employee  in Splunk Search 08-31-2016 0 3 | 0 | 3 | |
 | The following is my search query :- index=* | regex _raw!=".2016-\d{2}-\d{2}." | stats values(host) as hosts Also ... by pavanae Builder in Splunk Search 08-31-2016 0 5 | 0 | 5 | |
 | Hi all. I have a normal time selector in splunk that I think that everybody know. I noticed that in my dashboard i... by andreafebbo Communicator in Splunk Search 08-31-2016 1 1 | 1 | 1 | |
 | Hey people! So I may be a big idiot and be missing something very simple but i cant seem to figure it out. here is ... by singhh4 Path Finder in Splunk Search 08-31-2016 0 2 | 0 | 2 | |
 | i have a regex pattern in my .CSV file. Pattern1= A$B$C|K$L$M|X$Y$Z. where "$" is a variable like date and ID eac... by annamareddi New Member in Splunk Search 08-31-2016 0 2 | 0 | 2 | |
| | A particular public transit line is served by, say, N vehicles concurrently at any given time in the range [0,M] wher... by plucas_splunk Splunk Employee in Splunk Search 08-31-2016 0 8 | 0 | 8 | |
| | Hi Guys, I need some help with a stats command. Given is Data like this csv Round,Player1,Player2,ScorePlayer1,Sco... by PPape Contributor in Splunk Search 08-31-2016 0 3 | 0 | 3 | |
| | I am slowly progressing on a report but I am stuck on trying to extract some values from xml. The values I am trying... by ahogbin Communicator in Splunk Search 08-30-2016 0 3 | 0 | 3 | |
| | Hi All, I have a scenario to combine the search results from 2 queries. For Type= 101 I don't have fields "Amount" a... by ID_SplunkUser Path Finder in Splunk Search 08-30-2016 0 5 | 0 | 5 | |
 | Hi all, I realized then Splunk hasn't been correctly auto-setting the sourcetypes for my incoming logs, resulting in... by ZacEsa Communicator in Splunk Search 08-30-2016 0 4 | 0 | 4 | |
| | the following were some of the events from the search index=* 2016-08-30 21:04:42,995 INFO hgfshgfj 2016-04-23T20:0... by pavanae Builder in Splunk Search 08-30-2016 0 3 | 0 | 3 | |
 | Hi, We are looking for time chart that would give Status over time from our CSV file. Line graph should plot by Mon... by splunker9999 Path Finder in Splunk Search 08-30-2016 0 2 | 0 | 2 | |
| | How do I write the regex to list out the events with dd-mm-yyyy ? where dd-days mm-month yyyy-year all are digits... by pavanae Builder in Splunk Search 08-30-2016 0 3 | 0 | 3 | |
| | Hello, I need to chart a license usage that will also include the license cap as well (two lines) by bluemarvel Path Finder in Splunk Search 08-30-2016 0 3 | 0 | 3 | |
| | I have all the events logging from Linux were in the TIME_FORMAT = %d/%m/%y and Windows events were in TIME_FORMAT = ... by pavanae Builder in Splunk Search 08-30-2016 1 5 | 1 | 5 | |
| | Hello Splunk experts, Hoping someone can help get me in the right path. I am running a search where I would like to... by splunker1981 Path Finder in Splunk Search 08-30-2016 1 8 | 1 | 8 | |
| |  I have this stats table This is the search that creates it: index="nitro_application_summary" earliest=-1h@m lates... by JoshuaJohn Contributor in Splunk Search 08-30-2016 0 2 | 0 | 2 | |
| | Background: I created a dashboard to monitor ticket SLA times. The dashboard is slow because there are 18 single val... by WhatIsSplunk Explorer in Splunk Search 08-30-2016 0 4 | 0 | 4 | |
| | Hello all, I'm trying to calculate the amount of time a job took to run from an event that looks like so: 2016-08-26... by dondky Path Finder in Splunk Search 08-30-2016 0 2 | 0 | 2 | |
| | I'm trying to join hosts from a .csv file to the results of this metadata search: |metadata type=hosts | eval time_d... by splunkin11 Path Finder in Splunk Search 08-30-2016 0 3 | 0 | 3 | |
| | Hello, I have a search rule that is perfectly working: .... | sort - 0 _time | fields - _* | fields data1 data 2 d... by clorne Communicator in Splunk Search 08-30-2016 0 4 | 0 | 4 | |
| | Hi I want to exclude the field values starting with "note-" and more than 15 characters after it. How can I write th... by kiran331 Builder in Splunk Search 08-30-2016 0 2 | 0 | 2 | |
| | hello All - I have been struggling with a regex mystery that I cannot figure out, and am hoping for another perspecti... by popdeluxe New Member in Splunk Search 08-30-2016 0 4 | 0 | 4 | |
| | Hi, I am currently using these 2 REST searches to populate a a dashboard. | REST /services/data/indexes | search t... by mwdbhyat Builder in Splunk Search 08-30-2016 0 2 | 0 | 2 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #search-help Slack channel
Get Expert Help at Community Office Hours
Join the #search-help Slack channel
Become An Expert
Claim a $25 Cisco Store Gift Card
Help us improve the Splunk Community and complete our survey today!
Top Labels
-
administration
3 -
alert action
3 -
alert condition
2 -
Analytics Workspace
2 -
authentication
1 -
chart
943 -
Classic dashboard
1 -
configuration
2 -
correlation search
1 -
count
1,002 -
Dashboard Studio
3 -
data
3 -
data model
1 -
development
6 -
distributed search
1 -
drilldown
1 -
email
1 -
eval
2,605 -
field extraction
2,013 -
fields
2,055 -
host
1 -
index
4 -
indexer
2 -
inputs.conf
1 -
intermediate forwarder
1 -
introduction
5 -
join
1,056 -
JSON
2 -
Linux
2 -
login
1 -
lookup
1,557 -
metadata
307 -
monitoring console
2 -
other
132 -
panel
2 -
PDF
1 -
Python
1 -
regex
1,497 -
report acceleration
2 -
rex
1,245 -
SAML
1 -
saved search
5 -
scheduled search
4 -
scripted input
1 -
search
2 -
search head
3 -
search job inspector
679 -
search peer
1 -
simple XML
1 -
source
1 -
sourcetype
4 -
Splunk Web Framework
1 -
splunk-assist
1 -
splunkd
1 -
stats
3,551 -
subsearch
1,717 -
summary indexing
4 -
table
1,746 -
time
1 -
timechart
1,155 -
transaction
451 -
transforms.conf
1 -
troubleshooting
8 -
tstats
564 -
universal forwarder
5 -
using Splunk Cloud
2 -
using Splunk Enterprise
13 -
Windows
3
- « Previous
- Next »
Get Updates on the Splunk Community!
Splunk Observability for AI
Don’t miss out on an exciting Tech Talk on Splunk Observability for AI!Discover how Splunk’s agentic AI ...
Splunk Enterprise Security 8.x: The Essential Upgrade for Threat Detection, ...
Watch On Demand the Tech Talk, and empower your SOC to reach new heights!
Duration: 1 hour
Prepare to ...
Splunk Observability as Code: From Zero to Dashboard
For the details on what Self-Service Observability and Observability as Code is, we have some awesome content ...
