Splunk Search

Community Activity

unable to launch splunk on local machine. I recently installed splunk on my local machine (Win 7 * 32 bit). Every time i launch it, it gets opened via google c... by shivanikatyal New Member in Splunk Search 05-15-2015 0 6	0	6
How do I get an hourly result table from a single monthly event? I have monthly events feeding into splunk. However I need each monthly event to be repeated for each hour of the mon... by sndegwa Explorer in Splunk Search 05-15-2015 0 2	0	2
Most efficent way to ignore last line when monitoring to avoid issues with external log buffering? I'm having an issue with a custom application log file (text, xml, single line) where the log buffering done by the c... by JSkier Communicator in Splunk Search 05-15-2015 0 2	0	2
Changing the sorting order of a chart I got a stacked bar chart from the following search: ... \| chart count by "field1" "field2" On the X-axis I have fiel... by szabados Communicator in Splunk Search 05-15-2015 0 1	0	1
How can I refer to the chosen timescale within my search? To work around another issue with reporting average counts by time (See here ) I would like to instead use the chosen... by seanel Path Finder in Splunk Search 05-15-2015 0 2	0	2
Getting incorrect values while using Eval and eventstats Hi, I had count of some condition and aggregated data. using both I stored them in some variable using eval. then th... by SanthoshSreshta Contributor in Splunk Search 05-15-2015 0 12	0	12
how to use calculated values in geostats to generate map chart Hi All, How to generate Geostats chart showing some aggregated data. columns in my CSV file named: test_csv 1. Chu... by SanthoshSreshta Contributor in Splunk Search 05-15-2015 0 17	0	17
Splunk DB Connect: How to connect custom Netezza database? I am trying to connect a Netezza DB to Splunk via DB Connect. Please see the database_type.conf below . [netezza... by theouhuios Motivator in Splunk Search 05-14-2015 1 2	1	2
Find users who have done an event A, but not done an event B I have a splunk log that has fields 'user_id' and 'event'. What I would like to do is to find the list of users who h... by anoopsankar Engager in Splunk Search 05-14-2015 0 2	0	2
group source types Hi I am getting the list of sourcetype and its usage in GB. index=_internal source=metrics.log \| eval GB=kb/(1024... by athorat Communicator in Splunk Search 05-14-2015 0 9	0	9
How to draw a line chart using the data from events Hi, May I know how to use the data from events and draw a line chart in splunk or splunk can not do it? My input dat... by sunfan1981 New Member in Splunk Search 05-14-2015 0 1	0	1
Transaction to Find Duration I have a simple web service with a request and response called DeliverySchedule. The request and response have a uniq... by skoelpin SplunkTrust in Splunk Search 05-14-2015 0 30	0	30
Invalid Earliest_time in Splunk dashboard I am trying to make a dashboard with a custom time by editing the XML and giving the time in tag. I have tried all p... by shaileshv02 Explorer in Splunk Search 05-14-2015 1 2	1	2
Invalid latest_time: latest_time must be after earliest_time Hi - I've just installed splunk-5.0-140868 for Solaris 10 SPARC. The setup was very easy and as soon as I logged in I... by julian924s Explorer in Splunk Search 05-14-2015 0 7	0	7
Search Help - Finding and comparing events within a single sourcetype I've got about 4-5 different use cases that all require the same type of search logic / correlation but are run again... by jeremyarcher Path Finder in Splunk Search 05-14-2015 0 2	0	2
group fields I have extracted a numeric field and I want to count the fields by grouping them based on the range . For eg: Field ... by visa87 Explorer in Splunk Search 05-14-2015 0 1	0	1
Is it safe to deploy apps with lookups using the deployment server? We're not sure whether it's safe to use the deployment server feature for all our apps, especially those with lookup ... by d044160 Explorer in Splunk Search 05-14-2015 0 2	0	2
How to sort timechart results I have timechart for maximum CPU usage. but I have to show 10 hosts having maximum CPU usage in Graph. I have used so... by tkadale Path Finder in Splunk Search 05-14-2015 2 3	2	3
Geostats not giving count Hi I am trying to plot count of faults by location on gmaps, Query i am using is as below : source="geo.csv" \| table ... by kavyatim Path Finder in Splunk Search 05-14-2015 0 2	0	2
Need to return a field in a search even if it doesn't exist Hi, I have a problem with a query which runs on an hourly basis as the fields that need to be returned can vary. The... by anthonycopus Path Finder in Splunk Search 05-14-2015 1 3	1	3
Joining to another sourcetype based on field from one log message and correlating to a different log message in the same log log a 5/14/2015 1pm [1150] <message><trnid>1001</trnid></message> 5/14/2015 1:01pm [1150]elapsed time = 1100 log b 5... by danoconnl Explorer in Splunk Search 05-14-2015 0 2	0	2
Adding sparklines to chart Hi, I have a chart that is a count of alerts by hostname and severity. I'd like to add a column that is a sparkline o... by cjenning Explorer in Splunk Search 05-14-2015 1 4	1	4
search not returning expected results Hi, I am using DBConnect to connect to a DB export from Qualys This export shows the results of a scan to determine... by crossap Path Finder in Splunk Search 05-14-2015 0 4	0	4
Line Chart Time Between Two Searched Fields Hi, This should be easy, but I'm getting confused making it work. I have the following: Time: 01:00 PM Event: START... by chrisboy68 Contributor in Splunk Search 05-14-2015 0 3	0	3
How to sort a report to give me top 20 MAX values? I have a report that showing me the top 20 of field called "sc_bytes" (By count), > > source="xap.csv" \| top limit... by sraguan Explorer in Splunk Search 05-14-2015 1 7	1	7