Splunk Search

Community Activity

How to find correct logs to find error count. I want to calculate the error count from the logs . But the error are of two times which can be distinguish only from... by avi7326 Path Finder in Splunk Search 09-06-2023 0 5	0	5
CPU & MEMORY utilization HI Team,how to write search query for cpu & memory utilization please help on this thanks by lucky Explorer in Splunk Search 09-05-2023 0 2	0	2
In-built field extraction not working - different delimiters Hello,I am new to splunk and I trying to extract the fields using built-in feature. Since the log format contain bot... by sunnyleofremont New Member in Splunk Search 09-05-2023 0 2	0	2
Experiencing a 'Search Peer has the following message: 'Error in 'SearchParser HelloI've encountered an issue in my Splunk environment that's been causing some headaches. When running a search, I ... by stevediaz Explorer in Splunk Search 09-05-2023 0 1	0	1
How to exclude multiple values from multiple fields? I am trying to filter multiple values from two fields but not getting the expected result.index=test_01 EventCode=467... by rnikam1412 Loves-to-Learn Everything in Splunk Search 09-05-2023 0 2	0	2
How do I get data from Splunk REST API using python? Receiving error Hi, so my team is currently has some data on Splunk cloud. My task is to use your REST API to get this data using py... by ssharm223 Loves-to-Learn in Splunk Search 09-05-2023 0 10	0	10
Translation lookup table I have extraction of a field called Tool (Textual) The field values can be in English, German, French or Spanish. I ... by ICAP_RND Engager in Splunk Search 09-05-2023 0 3	0	3
Does "WHERE" SQL clause have the same row limitation as "INNER JOIN"? Hello,Does "WHERE" SQL clause have the same row limitation as "INNER JOIN"?Does "WHERE" and "INNER JOIN" have the sam... by LearningGuy Motivator in Splunk Search 09-05-2023 0 3	0	3
How to extract a threshold from lookup and create a default value? Hi, I'm trying to create a filter based on a threshold value that is unique for some objects and fixed for the other... by JohnnyMnemonic Explorer in Splunk Search 09-05-2023 0 2	0	2
How can I see what my universal and heavy forwarders are ingesting and sending I'm trying to produce an architecture diagram of our Splunk environment and I want to know what each of our universal... by jhilton90 Path Finder in Splunk Search 09-05-2023 0 5	0	5
How to search from a static lookup? Hi, I'm trying to create a table that contains a list of tasks. The list is static and stored in a lookup table calle... by CStroud Engager in Splunk Search 09-05-2023 0 3	0	3
How to Count the percentage of stats by two fields (not total)? [search] \|stats count by ClientName Outcomeexample: Client1 Positive count Client1 Negative count Client2 Positive co... by saksona Engager in Splunk Search 09-05-2023 0 5	0	5
how to prepare db_output in advance Hi all, So here is the deal, I have to prepare some( a lot) db_outputs(using db_connect), however the corresponding t... by boromir Path Finder in Splunk Search 09-05-2023 0 0	0	0
How to to apply the predict function in the count of each Id? I have use case to use the ML feature to detect the anamoly in comm sent from each ID.I was trying to get the same ... by avni26 Explorer in Splunk Search 09-04-2023 0 1	0	1
Is it possible for a search string to pick up instances where the last [say] 3 logs are identical? Hi All We have a couple of jobs that occasionally loop around same code returning same message/log - is it possible f... by Mick_OBrien Path Finder in Splunk Search 09-04-2023 0 7	0	7
Why is configured Field not showing in interesting field? Configured Field is not showing in interesting field. Getting ;;;;;;;;;;;;; value after searching with index="Index N... by AA_01 Explorer in Splunk Search 09-04-2023 0 5	0	5
How to find high-frequency behavioral events using Splunk? There are many accounts with different roles that often use the backend management system to query user information. ... by bestSplunker Contributor in Splunk Search 09-03-2023 0 4	0	4
correlate events between two indexes with timestamp I have an index A and another index B. logs in A have a correlation to logs in B. But the only common field between t... by sigma Path Finder in Splunk Search 09-02-2023 0 2	0	2
Simple splunk table question I am new to Splunk so I'm learning and I know that it can do quite a bit. I am searching for similar network traffic... by mjh New Member in Splunk Search 09-02-2023 0 1	0	1
i crafted these searches how can i add specific filters Deferred Searches: \| rest /servicesNS/-/-/search/jobs splunk_server=local\| search dispatchState="DEFERRED" isSavedSe... by ustng1 New Member in Splunk Search 09-01-2023 0 1	0	1
How to match partial values of field a with partial values of field b ? Hi, I want to match partial values of field a with partial values of field b.. I tried with match/like but no luck..f... by innoce Path Finder in Splunk Search 09-01-2023 0 8	0	8
Combine Values to Return Search Result We are using Splunk OPC Add-On to bring in some tags. We have two specific tags that we are currently looking at. Tag... by NewToSplunk1 Explorer in Splunk Search 09-01-2023 0 8	0	8
Create a table that shows information across multiple events grouped by a common value Hi there,I was wondering if I could get some assistance on whether the following is possible. I am quite new to creat... by SteGiles89 New Member in Splunk Search 09-01-2023 0 1	0	1
Subsearch / query with inputlookup Apologies, I am quite new to Splunk so not sure if this is possible, I have the following simple query: \| inputlooku... by Cranie Explorer in Splunk Search 09-01-2023 0 5	0	5
How to delete duplicate events? I've been looking into some ways to remove duplicate events using a search. Finding them is not an issue. We can use ... by Flynt Splunk Employee in Splunk Search 09-01-2023 12 17	12	17