Splunk Search

Splunk Search
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
Community Activity
gcusello

Why am I not getting results running a search on an extracted field?

Hi at all, I have a very strange behavior in one of my searches: I extracted a field from a raw as a part of a word...
by SplunkTrust SplunkTrust in Splunk Search 04-14-2016
0 2
0
2
prakash007

How do I convert binary files to human readable format?

I'm getting this error in Splunk: 04-13-2016 11:13:58.607 -0500 WARN FileClassifierManager - The file '/opt/wasserv...
by prakash007 Builder in Splunk Search 04-14-2016
0 2
0
2
ronmurphy

Calculating percentage and placing in a radial gauge

I am trying to a radial gauge to report a percentage. I've built my search and the field that I want to report on ha...
by ronmurphy New Member in Splunk Search 04-14-2016
0 3
0
3
Iranes

How to create a search that shows a trending value based on the selected time range picker value?

Hello, I need to make a search in a dashboard which creates a trending value comparing the range of time you pick (e...
by Iranes Explorer in Splunk Search 04-14-2016
1 6
1
6
zindain24

Search help to identify when start/finish tasks fail to finish properly.

Need some advice on a search. I have a logfile that clearly states starting and finishing tasks for each of the Batc...
by zindain24 Path Finder in Splunk Search 04-14-2016
0 2
0
2
msmapper

Chart the actual value over time and not an average, etc.

I know this should be a simple thing but I am trying to just chart out the trend of a value over time. I don't want a...
by msmapper Path Finder in Splunk Search 04-13-2016
5 5
5
5
thefuzz4

How to edit my search to get the sum of the maximum value per day for the month?

So I have my accurite weather sensor pumping its data into Splunk. (If you want to know how I did that just ask  )....
by thefuzz4 Path Finder in Splunk Search 04-13-2016
0 2
0
2
Bags

How to write a search to return unique field values for a certain time range that did not exist before that period?

Hello, I am trying to make a search that will return the messages from logs from one set, but not from the other. Un...
by Bags Explorer in Splunk Search 04-13-2016
0 12
0
12
alexl1

does snap-to mean snap forward or snap back?

For example, if the time is 8:55 and I look for events -h@h, does that mean 7:00 (8:55-1=7:55, then to @h is 7) or 8...
by alexl1 Path Finder in Splunk Search 04-13-2016
0 4
0
4
gbarwis

Subsearch limits. Better approach?

I'm a Splunk rookie, so i apologize if I'm unclear on my question. I have one index which contains, among other thin...
by gbarwis Engager in Splunk Search 04-13-2016
0 3
0
3
kpavan

How do I edit my search to join multiple search results for user authentication failure counts?

Hi All, Am trying to join multiple searches for authentication failures from UserType (i.e, Windows User, Linux User...
by kpavan Path Finder in Splunk Search 04-13-2016
0 1
0
1
niravshahcorero

How do I compare distinct counts of a given field between two different time ranges within the same Splunk search?

I have a CSV file that a list of customers and their orders. The format is as follows: OrderDate, OrderNumber, Cust...
by niravshahcorero New Member in Splunk Search 04-13-2016
0 1
0
1
prakashbhanu407

How to combine my two searches and create a time chart with the resulting data?

I have to add 2 searches. Each search's output is FileName and Time....and I have to create a graph with the 2 types ...
by prakashbhanu407 New Member in Splunk Search 04-13-2016
0 2
0
2
heming277

How to search the count of a field's values in a comma delimited list and display it as a table?

Hi, I have a serious problem. I'm trying to get the counts of all the values for a field in a comma delimited list,...
by heming277 New Member in Splunk Search 04-13-2016
0 2
0
2
ajdyer2000

How to append zeros to the beginning of existing numeric values for a field to make each value 6 digits long?

Hi I was wondering if anyone may be able to help. We have an existing field with numbers from 2 up to 6 digits. 09 ...
by ajdyer2000 Path Finder in Splunk Search 04-13-2016
1 5
1
5
jwalthour

How to populate multiple tokens from a single drop-down input search in an HTML dashboard?

I've got a text input that is used to populate a second drop-down input based on a search. Right now, that drop-down ...
by jwalthour Communicator in Splunk Search 04-13-2016
1 1
1
1
rmacurak

How do I configure the retention period for users' search history?

How do I configure the retention period for users' search history?
by rmacurak Explorer in Splunk Search 04-13-2016
0 3
0
3
satyatej18

can we have multiple salesforce connections to single instance of SPLUNK Cloud

Hi Team. We are planning to use SPLUNK Cloud for reporting on Event Logs from Salesforce. I would like to understa...
by satyatej18 Explorer in Splunk Search 04-12-2016
1 2
1
2
markwymer

filter results on number of events by field

In my defense - it's been a really long day and I apologies if this is the most simple question...... I have a searc...
by markwymer Path Finder in Splunk Search 04-12-2016
0 3
0
3
jeremiahc4

Why does my automatic lookup not work before the first pipe in a search?

I've got a strange problem where I can't quite figure out why my automatic lookups work fine anywhere after a pipe, b...
by jeremiahc4 Builder in Splunk Search 04-12-2016
0 3
0
3
jitsinha

How to extract Email recipients from Splunk python.log?

I got couple of log entries like below 2015-02-04 09:40:06,373 INFO Sending email. subject="Test e-mail from Splunk ...
by jitsinha Path Finder in Splunk Search 04-12-2016
0 2
0
2
nlrdy

How to calculate average response time by day per request type?

Hello, I was able to get the chart with below fields. Now my question is how do I calculate average response time ((...
by nlrdy Explorer in Splunk Search 04-12-2016
0 4
0
4
guillecasco

How to edit my search to show the count and percentage per id for each day?

Hey. I'm quite new with Splunk and learning for the moment. I need to show a table with " Time id count percentage "...
by guillecasco Path Finder in Splunk Search 04-12-2016
0 3
0
3
thisissplunk

Subsearch - Filter out outer search using inner search's results? Finding the bad seed.

I need to filter down an outer search based on the inner search's results. What I mean is that my inner search return...
by thisissplunk Builder in Splunk Search 04-12-2016
0 3
0
3
magenta

How do I aggregate events using 2 different timestamps?

I am looking to "segment" operational changes(events) based on both the CLOSEDDATE & OPENDATE and essentially calcula...
by magenta New Member in Splunk Search 04-12-2016
0 5
0
5
Top Labels
Get Updates on the Splunk Community!

Announcing Modern Navigation: A New Era of Splunk User Experience

We are excited to introduce the Modern Navigation feature in the Splunk Platform, available to both cloud and ...

Modernize your Splunk Apps – Introducing Python 3.13 in Splunk

We are excited to announce that the upcoming releases of Splunk Enterprise 10.2.x and Splunk Cloud Platform ...

Step into “Hunt the Insider: An Splunk ES Premier Mystery” to catch a cybercriminal ...

After a whole week of being on call, you fell asleep on your keyboard, and you hit a sequence of buttons that ...