Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Splunk Search
Splunk Search
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
- Find Answers
- :
- Using Splunk
- :
- Splunk Search
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | My existing search string is: index="os" OR index="app" host=ip-10-12-70-56.va2.b2c.nike.com sourcetype=ps| multikv... by IamRoni Explorer in Splunk Search 11-03-2015 0 4 | 0 | 4 | |
| | Hi I have a server that works to search-haed and a by search-index . They're virtual machines and before upgrade to ... by PIETRO_CENTANNI New Member in Splunk Search 11-03-2015 0 9 | 0 | 9 | |
 | Hello, I have a props.conf for a xml file. I just copied the props.conf which was automatically created in the "Add ... by dkeck Influencer in Splunk Search 11-02-2015 0 2 | 0 | 2 | |
 | I'm going to make a pie chart to show web access by browser. I want to use httpagentparser (module) to python lookup ... by mishin Explorer in Splunk Search 11-02-2015 0 1 | 0 | 1 | |
 | Currently I have 2 indexes: Index A contains ProgramID, User Index B contains ID, Machine I would like to use stats ... by leonheart78 Explorer in Splunk Search 11-02-2015 0 4 | 0 | 4 | |
| | Hi. I'm creating an Apdex SLA report on "user response time" performance in my application. I am aware about the "Ap... by patrik_lundberg New Member in Splunk Search 11-02-2015 0 1 | 0 | 1 | |
 | How to extract fields from a specific field instead of raw data using the conf files? Can it be done with EXTRACT-<cl... by rsimmons Splunk Employee  in Splunk Search 11-02-2015 0 2 | 0 | 2 | |
 | How do I take a time field with multiple human-readable formats and get the epoch time at search-time? by landen99 Motivator in Splunk Search 11-02-2015 0 6 | 0 | 6 | |
| | Hi Our data is stored in the following directories. Each directory contains 1 day of data. s3n://rcs-cms-event/cep/... by mikechu New Member in Splunk Search 11-02-2015 0 3 | 0 | 3 | |
 | Hi Is it possible to do something like this: [MONITOR:///some directory/WE\d{8}.log] for indexing the following f... by edrivera3 Builder in Splunk Search 11-02-2015 1 3 | 1 | 3 | |
| | Hi, Sample log file: STD QBATCH:P GRAUT 77718 R5609812_S0000001_5847829 I want to create that highlight... by Abilan1 Path Finder in Splunk Search 11-02-2015 0 13 | 0 | 13 | |
| | Hi, I have some transactions which have taken 3 hours to complete. When I use maxspan=90m, my transaction is breakin... by Laya123 Communicator in Splunk Search 11-02-2015 1 9 | 1 | 9 | |
| | Column1 Column2 28 28 46 46-28 58 58-(28+46) 89 89-(28+46+58) Is this possible? ... by payal23 Path Finder in Splunk Search 11-02-2015 0 2 | 0 | 2 | |
| | IS there a way I can create a new field with a cumulative count of a unique ID? For example, currently i have create... by keithyap Path Finder in Splunk Search 11-01-2015 0 2 | 0 | 2 | |
| | I am trying to remove the header from a log file. I know that I need to put a stanza in props.conf on the forwarder ... by Bliide Path Finder in Splunk Search 11-01-2015 0 3 | 0 | 3 | |
 |  How would I divide each value in this row by the count(CMDB SERVER) calc? by jhayIV Engager in Splunk Search 10-31-2015 0 2 | 0 | 2 | |
 | I want to do an automatic lookup from a CSV file on index time, and add new fields to the event. I got this working, ... by joarsvensson New Member in Splunk Search 10-31-2015 0 5 | 0 | 5 | |
 | I am doing a simple search: index=pqr host=xyz* NOT TYPE="*ABCDE*" | fields X, Y | timechart limit=0 span=10m count,... by m_vivek Path Finder in Splunk Search 10-31-2015 0 9 | 0 | 9 | |
| | I am trying to audit bandwidth usage. The following search works as expected, except the URLS flood the URL field. I ... by alaking Explorer in Splunk Search 10-31-2015 0 1 | 0 | 1 | |
| | Hi all, I'm trying to extract the filename and file ext of a windows path into to different fields. The sourcetype i... by markwymer Path Finder in Splunk Search 10-30-2015 0 5 | 0 | 5 | |
| | Hi, I need a detailed report on search concurrency, for both scheduled and interactive searches. How would I get th... by a212830 Champion in Splunk Search 10-30-2015 0 2 | 0 | 2 | |
| | I have a search that results in an IP address as the result with the field name clientIP: host=hostname SSL=TLSv1.2 ... by mkatz New Member in Splunk Search 10-30-2015 0 6 | 0 | 6 | |
| | Can we put or in 2 regex conditions? If no, is there any alternative? for example index = idx1 | regex name = ^Aa ... by aashish_122001 Explorer in Splunk Search 10-30-2015 0 3 | 0 | 3 | |
| | The abclogs index contains a field call "userid" and there is similar field "identity" in the file totalname.csv. Now... by chlily New Member in Splunk Search 10-30-2015 0 3 | 0 | 3 | |
 | I have to identify processes not running on a list of hosts. To do this, I have a lookup table with all the processes... by gcusello SplunkTrust  in Splunk Search 10-30-2015 0 1 | 0 | 1 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #search-help Slack channel
Get Expert Help at Community Office Hours
Join the #search-help Slack channel
Become An Expert
Top Labels
-
administration
3 -
alert action
3 -
alert condition
2 -
Analytics Workspace
2 -
authentication
1 -
chart
946 -
Classic dashboard
1 -
configuration
2 -
correlation search
1 -
count
1,006 -
Dashboard Studio
3 -
data
3 -
data model
1 -
development
6 -
distributed search
1 -
drilldown
1 -
email
1 -
eval
2,614 -
field extraction
2,022 -
fields
2,063 -
host
1 -
index
4 -
indexer
2 -
inputs.conf
1 -
intermediate forwarder
1 -
introduction
5 -
join
1,060 -
JSON
2 -
Linux
2 -
login
1 -
lookup
1,566 -
metadata
309 -
monitoring console
2 -
other
179 -
panel
2 -
PDF
1 -
Python
1 -
regex
1,499 -
report acceleration
2 -
rex
1,250 -
SAML
1 -
saved search
5 -
scheduled search
4 -
scripted input
1 -
search
2 -
search head
3 -
search job inspector
683 -
search peer
1 -
simple XML
1 -
source
1 -
sourcetype
4 -
Splunk Web Framework
1 -
splunk-assist
1 -
splunkd
1 -
stats
3,565 -
subsearch
1,729 -
summary indexing
4 -
table
1,754 -
time
1 -
timechart
1,158 -
transaction
452 -
transforms.conf
1 -
troubleshooting
8 -
tstats
569 -
universal forwarder
5 -
using Splunk Cloud
2 -
using Splunk Enterprise
13 -
Windows
3
- « Previous
- Next »
Get Updates on the Splunk Community!
Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas
Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas
Cisco Live 2026 is almost here, and this ...
What Is the Name of the USB Key Inserted by Bob Smith? (BOTS Hint, Not the Answer)
Hello Splunkers,
So you searched, “what is the name of the usb key inserted by bob smith?”
Not gonna lie… ...
Automating Threat Operations and Threat Hunting with Recorded Future
Automating Threat Operations and Threat Hunting
with Recorded Future
June 29, 2026 | Register
Is your ...
