Splunk Search

Community Activity

map command subsearch issue Hi, I have an issue with map command. The query is: index=myindex field=value \|stats count by host\| map maxsearches=... by francescafilini New Member in Splunk Search 05-14-2015 0 5	0	5
Splunk DB Connect: How to search the latest database dump ONLY? This might be an easy thing to do, but I haven't figured out a good way to do it. I have a database input that runs ... by ocallender Explorer in Splunk Search 05-13-2015 1 5	1	5
Lookup Country Name Hi All, I'm new to Splunk and have taken the Splunk Search/Reporting and Knowledge Objects courses - however this wa... by spIunk_user Engager in Splunk Search 05-13-2015 1 3	1	3
Regular expression Hi, Can someone help me in writing the regex for following string 20141128082428PAASSUB 00.?9CDPCI8I USER ACTION TI... by Navanitha Path Finder in Splunk Search 05-13-2015 0 11	0	11
How to display search results of a query in a table using subsearch Hi, 1.Basic Search Criteria index=Logs_idx Cricket HOST=India "Top 10 Overs Average" 2. Now I am creating a table o... by kamal_jagga Contributor in Splunk Search 05-13-2015 0 4	0	4
Eval eliminated value instead of using NOT in initial search I have a set of data from which I'd like to answer three questions in a single search: 1. Users who open a menu and ... by pepper_seattle Path Finder in Splunk Search 05-13-2015 0 2	0	2
How to extract the application name from the log file path or process in a search? My goal is to create an application list running from all servers in the form of table. index=unix* host=* sourcetyp... by vikasshinde New Member in Splunk Search 05-13-2015 0 3	0	3
Is it possible to run subsearch per each event? Is there a way to run custom subsearch per each event? Pseudo: index=logs "error" \| foreachevent [search index=extra_... by gesman Communicator in Splunk Search 05-13-2015 0 2	0	2
creating a _masheddate3 in datetime.xml This is a question stemmed from http://answers.splunk.com/questions/2996/strptime-format-for-yyyymmddhhmmss and http:... by hiddenkirby Contributor in Splunk Search 05-13-2015 1 9	1	9
How do I change the Common Name (CN) = SplunkServerDefaultCert to the hostname? Hello, Splunk cert shows up in our vulnerability report, The Subject Common Name (CN) found in the X.509 cert does... by SandzVG Explorer in Splunk Search 05-13-2015 2 4	2	4
combine two log files to eachother no corresponding fields We have an access_log file with an 500 error and want to relate this to the application log of the application: acce... by arjangoos Path Finder in Splunk Search 05-13-2015 0 6	0	6
How can we extract a text in a new field Hi , I want to extract a part of a text in a new field, and it was very difficult for me . this is an extract of my ... by otman01 Communicator in Splunk Search 05-13-2015 0 9	0	9
stacked column chart for three values Hi All, I have generated a dashboard with column chart using Query: sourcetype="Churn Data_CSV" Churn="True." \| sta... by SanthoshSreshta Contributor in Splunk Search 05-13-2015 0 1	0	1
how to give data for scatter plot Hi All, I am a newbie for Splunk. I am unable to plot a scatter graph for three measures like I need a scatter plot... by SanthoshSreshta Contributor in Splunk Search 05-13-2015 0 1	0	1
How to find incomplete transactions outside of a 30 day period In the query below I am trying to find all users who logged in and then did not login again with in the time range. ... by metersk Path Finder in Splunk Search 05-12-2015 0 1	0	1
Can I sort the legend of a timechart by value instead of alphabetically? The timechart is based on avg response time for webpages, but the legend lists the URL's in alphabetical order. Is t... by richnavis Contributor in Splunk Search 05-12-2015 0 3	0	3
2 queries in a line chart Query one 1> index=prod sourcetype="STORM" "received message from MQ" ">EXIGEN_QUOTE<" \| timechart count ... by athorat3 New Member in Splunk Search 05-12-2015 0 1	0	1
How to add the custom app to Management App list? Hi, I've just joined Splunk world. I made my app. Then, how can I add my all to Management App list? I just want to s... by mijounglee New Member in Splunk Search 05-12-2015 0 8	0	8
..求中文文档..chinese document 小弟我英语不过关，求中文文档。 my english is pool .Need chinese document. 为毛搞个搜索要这么复杂这么多正则表达式，写的像编程一下的语句去搜索，搞怎么复杂干嘛，产品经理出来，保证不打死... by apolee New Member in Splunk Search 05-12-2015 0 1	0	1
Dashboard table styling? I want to adapt a script from the XML examples to a dashboard of mine. When I add the script="" stylesheet="" line do... by szabados Communicator in Splunk Search 05-12-2015 1 6	1	6
Rowcount comparisons on large numbers of database tables I'm working with a customer to run rowcount comparisons between two tables that are replicating data in one direction... by mcomfurf Path Finder in Splunk Search 05-12-2015 1 2	1	2
Log file not have any date field but splunk auto give different different date to event i need remove date in _time field? Hi I have log file which create every 1 hr so they not have date field but splunk Automatically provide different da... by nitesh218ss Communicator in Splunk Search 05-12-2015 0 15	0	15
Subtract two time in one event not work properly in milisecond hi try to subtract 2 time but some are subtract some show blank my time format is 07:33:41.556 I below i write 2... by nitesh218ss Communicator in Splunk Search 05-12-2015 0 18	0	18
Search for inactive users in my application I am using Splunk to monitor my application and would like to know what users have been inactive of the last X days. ... by will_paxata Explorer in Splunk Search 05-12-2015 0 4	0	4
Top 10 Values of the column Hi all, I am able to get top 10 values but with that I need to get others ( Those who are not in Top 10 ) in one val... by SanthoshSreshta Contributor in Splunk Search 05-12-2015 1 3	1	3