Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Splunk Search
Splunk Search
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Using Splunk
- :
- Splunk Search
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | I have a scenario like this: Login logs are created when users ( both admin and normal) logs in the website with a v... by dineshp Explorer in Splunk Search 04-12-2015 0 4 | 0 | 4 | |
| | I am using Splunk to log all data from a firewall. I get records that contain MAC addresses and timestamps among man... by dtilly New Member in Splunk Search 04-12-2015 0 9 | 0 | 9 | |
| | I would like to count unique users by day, week, and month. I'm not really sure what's the preferred Splunk method to... by sc0tt Builder in Splunk Search 04-12-2015 1 3 | 1 | 3 | |
| | We are currently indexing data from several SQL Server DBs in Splunk. All of the connections are currently configured... by rpattison Explorer in Splunk Search 04-11-2015 0 1 | 0 | 1 | |
| | I have a stats command that correctly formats the count field. stats count by method client | fieldformat count=tos... by wang Path Finder in Splunk Search 04-11-2015 1 4 | 1 | 4 | |
| | Our nginx access logs use a quoted string when dumping cookies. It ends up looking something like this: "cookie_a=va... by sfrazer Explorer in Splunk Search 04-11-2015 0 1 | 0 | 1 | |
| | Hi, I need to run 2 different search queries based on the drop-down value on the same panel. Is there an example to ... by xvxt006 Contributor in Splunk Search 04-11-2015 0 2 | 0 | 2 | |
| | can you please advise a rex for domain\username example windows\mathews Below is sample of event I am trying to ext... by LintuMathews Explorer in Splunk Search 04-10-2015 0 5 | 0 | 5 | |
| | Hi guys! So I am building on some of the previous anwsers I got, but I want to get even more specific now and can't ... by splunkman341 Communicator in Splunk Search 04-10-2015 0 8 | 0 | 8 | |
| | Following the example described on http://www.splunk.com/base/Documentation/4.1/User/RealtimeSearch#Expected_performa... by blurblebot Communicator in Splunk Search 04-10-2015 3 2 | 3 | 2 | |
 | I have 4 strings which are inside these tags OrderMessage 1) "Missed Delivery cut-off, Redated to <>" 2) "Existing... by skoelpin SplunkTrust  in Splunk Search 04-10-2015 1 14 | 1 | 14 | |
| | I'm new-ish to Splunk, so forgive me if I'm not sure of the best way to do this. Basically, I'm trying to find out t... by roryhewitt New Member in Splunk Search 04-10-2015 0 6 | 0 | 6 | |
| | Right now, Splunk indexes events that looks like this: Msg1=... time=... val=... id=... @ Msg2=... time=... val=... ... by andra_pietraru Path Finder in Splunk Search 04-10-2015 1 11 | 1 | 11 | |
| | Hello, I'm evaluating splunk to capture data for raising data alerts, raising technical alerts etc. Most of data gen... by krishananth Explorer in Splunk Search 04-10-2015 1 3 | 1 | 3 | |
| | I am trying to correlate a event with a kvstore lookup, but I don't have a common key besides the username. So I want... by lassel Communicator in Splunk Search 04-10-2015 0 1 | 0 | 1 | |
| | I have a web_log with _time, src_ip, dst_ip, dst_hostname, url, url_path, file_extension. I tried to run a search on... by will4t Explorer in Splunk Search 04-10-2015 0 2 | 0 | 2 | |
 | Hello guys! I needed to use a single panel to show three status, green, yellow and red. But the problem is, a row wi... by vtsguerrero Contributor in Splunk Search 04-10-2015 0 1 | 0 | 1 | |
| | Hi Guys. We have a Jboss instance from which we index AccessLogs from, and we expect a fair amount of processes req... by Norling80 Path Finder in Splunk Search 04-10-2015 1 3 | 1 | 3 | |
 | Hello, I have two indexes one containing a list of webpages that has been accessed (Index A) and another containing ... by DavidHourani Super Champion in Splunk Search 04-10-2015 0 4 | 0 | 4 | |
| | What would be the syntax to search for registry key creation? by Barty001 Engager in Splunk Search 04-10-2015 0 2 | 0 | 2 | |
| | I hope this is an easy question, but I can't figure out how to get this to work. I am still in a learning process. T... by lassel Communicator in Splunk Search 04-10-2015 0 4 | 0 | 4 | |
 | Hi I am looking for a sample external lookup script or custom command that takes one field value from evens and co... by melonman Motivator in Splunk Search 04-10-2015 0 4 | 0 | 4 | |
| | The field extractor wizard came up with the following: (?=[^f]*(?:firewall:|f.*firewall:))^(?:[^"\n]*"){2}\s+(?P[^ ]... by samuelrey New Member in Splunk Search 04-09-2015 0 2 | 0 | 2 | |
 | Hi, I want to create a dashboard using these 2 searches: 1) the first one index='text' | count, will give a result... by otman01 Communicator in Splunk Search 04-09-2015 1 9 | 1 | 9 | |
| | I currently have a 4 different phrases which are between the fixed words "a:OrderMessage and a/:OrderMessage" . I hav... by skoelpin SplunkTrust in Splunk Search 04-09-2015 0 10 | 0 | 10 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #search-help Slack channel
Get Expert Help at Community Office Hours
Join the #search-help Slack channel
Become An Expert
Top Labels
-
administration
3 -
alert action
3 -
alert condition
2 -
Analytics Workspace
2 -
authentication
1 -
chart
944 -
Classic dashboard
1 -
configuration
2 -
correlation search
1 -
count
1,004 -
Dashboard Studio
3 -
data
3 -
data model
1 -
development
6 -
distributed search
1 -
drilldown
1 -
email
1 -
eval
2,610 -
field extraction
2,018 -
fields
2,062 -
host
1 -
index
4 -
indexer
2 -
inputs.conf
1 -
intermediate forwarder
1 -
introduction
5 -
join
1,059 -
JSON
2 -
Linux
2 -
login
1 -
lookup
1,565 -
metadata
307 -
monitoring console
2 -
other
156 -
panel
2 -
PDF
1 -
Python
1 -
regex
1,498 -
report acceleration
2 -
rex
1,246 -
SAML
1 -
saved search
5 -
scheduled search
4 -
scripted input
1 -
search
2 -
search head
3 -
search job inspector
682 -
search peer
1 -
simple XML
1 -
source
1 -
sourcetype
4 -
Splunk Web Framework
1 -
splunk-assist
1 -
splunkd
1 -
stats
3,560 -
subsearch
1,723 -
summary indexing
4 -
table
1,751 -
time
1 -
timechart
1,156 -
transaction
451 -
transforms.conf
1 -
troubleshooting
8 -
tstats
566 -
universal forwarder
5 -
using Splunk Cloud
2 -
using Splunk Enterprise
13 -
Windows
3
- « Previous
- Next »
Get Updates on the Splunk Community!
Splunkers, Pack Your Bags: Why Cisco Live EMEA is Your Next Big Destination
The Power of Two: Splunk + Cisco at "Ludicrous Scale"
You know Splunk. You know Cisco. But have you seen ...
Data Management Digest – January 2026
Welcome to the January 2026 edition of Data Management Digest!
Welcome to the January 2026 edition of Data ...
Splunk SOAR Now Available on Google Cloud Platform
We’re excited to announce that Splunk SOAR is now natively available as a SaaS solution on Google Cloud ...
