Splunk Search

Community Activity

How can I make Splunk stop searching after it finds a set number of results? Hey there! I have a query that will always only return one result. This result will be different depending on the in... by rlough Path Finder in Splunk Search 02-02-2015 1 2	1	2
How to write the regex for host_regex for my sample data? I need some help building regex for host_regex. Please and thank you! /opt/splunk/SFTP/SYSTEM/daftm44de_sec.14-08-2... by omgwut56k Path Finder in Splunk Search 02-02-2015 0 1	0	1
Adding data with oneshot on gemeric_single_line Currently using oneshot to index data into splunk (bash) Is there a way to add a option for data to be in gemeric_sin... by nyp_kwyc Explorer in Splunk Search 02-02-2015 0 3	0	3
How to search multiple value on the same field I have a regex that searches for different types of value on a field: \| regex _raw="FIELD=(value1\|value2\|value3)" H... by BunnyHop Contributor in Splunk Search 02-02-2015 2 6	2	6
controlling access to dashboard and search capability I think this is a typical Splunk use case wherein, we want to give access to users who can only VIEW dashboards but s... by splunkears Path Finder in Splunk Search 02-02-2015 2 10	2	10
How to combine two different search results in a single visualization? Hello, I'm having trouble combining two different search results, from different source type into one visualization... by kenvanderheyden Path Finder in Splunk Search 02-02-2015 0 1	0	1
Optimize a search without using join Hello, Hope you can give an solution to my concern. There were different sourcetypes under a single index and they h... by jonathan_yan5 Explorer in Splunk Search 02-01-2015 0 2	0	2
How to create a stacked bar chart to compare denied and permitted traffic for the top 30 denied IP addresses from firewall logs? I have firewall logs where I'd like to count the top 30 denied IP addresses and from that, create a stacked bar chart... by simon_lavigne Path Finder in Splunk Search 02-01-2015 0 1	0	1
Problem with field extraction Hello I am having some pretty weird issues with field extraction on 6.2. When I perform this search: 65932 It re... by nyp_kwyc Explorer in Splunk Search 02-01-2015 0 3	0	3
How to get field values from search result using python script My test script splunk.auth.getSessionKey('admin','admin') my_job = splunk.search.dispatch('search index=* source =... by ronak Path Finder in Splunk Search 02-01-2015 0 1	0	1
Quota=0 bytes for 3 days. How do i reenable search ? Hi I have been using trial version and it expired during Christmas. Now i had expected to use the free version inste... by lhdk New Member in Splunk Search 02-01-2015 0 5	0	5
How to setup multivalued fields? Hi guys, I have a problem for which I've seen lots of answers but none worked for me. I have to say that I am a begin... by achitan Explorer in Splunk Search 02-01-2015 1 3	1	3
How can I get eventstats to recognize a renamed field? Hi, I've been having some trouble grouping same fields from multiple sources when the field names are different. I h... by rlough Path Finder in Splunk Search 01-31-2015 0 1	0	1
Masking Sensitive Data Ok Splunkers...... I have 1 search-head, 2 indexers, 1 Deployment server Here is the event (sourcetype=mysourcetype... by dperry Communicator in Splunk Search 01-31-2015 0 6	0	6
why can't I use join to return all suited value? hi, all: I want to link the two parts.The first is a csv file, the second is an index. The fileld name that i wan... by pingpangbubai Explorer in Splunk Search 01-31-2015 0 3	0	3
Get the Time difference from the logs to display in "%d/%m/%Y %H:%M:%S" format Hi All, I have a csv file, as following: ` FINISH_DATE START_DATE 30/09/09 19:51:16 30/09/09 19:... by harshal_chakran Builder in Splunk Search 01-30-2015 0 2	0	2
Filter out results for geolocations using a eventstats where clause I've been struggling with this one for a while now, I think I need to use a sub search to filter out the results, but... by alaorath Path Finder in Splunk Search 01-30-2015 0 3	0	3
Zoom and Center Map Visualization Hello, I have a geostats with iplocation query which specifies specific regions within a country in the search. I'd ... by pepper_seattle Path Finder in Splunk Search 01-30-2015 0 5	0	5
After grouping data, how to find the difference between each "num" field value pair per row in a table? I have a query that returns a stats table with all the data I care about, but there's a calculation I'd like to add t... by kyotosaw New Member in Splunk Search 01-30-2015 0 4	0	4
Is there a way to run multiple searches one after another, ensuring the previous search has finished before a new search starts? Is there any way we can run multiple searches one after another, ensuring that the previous search has finished befor... by jdunlea Contributor in Splunk Search 01-30-2015 2 7	2	7
Can we disable the inspect link from the search results ?? Hi. In my form search query yieds 0 results . i am getting the message " No results found " folowed by inspect link... by rakesh_498115 Motivator in Splunk Search 01-30-2015 4 14	4	14
Why do the links to searches sent as part of alert emails have the wrong base URL and do not work? Hi, We've noticed that the link to searches that are sent as part of the alert email are wrong. The link to the sea... by a212830 Champion in Splunk Search 01-30-2015 0 4	0	4
How to index a single data source and apply multiple sourcetypes based on the format of the log line? I want to index our Apache error logs. There's just one nasty problem: there are multiple formats for events in the ... by redc Builder in Splunk Search 01-30-2015 0 10	0	10
Is it possible to enter a range of values into a field of a lookup file? I use a lookup file for matching a TCP or UDP port and an application. Is it possible to specify a port range instead... by erwan_raulet Explorer in Splunk Search 01-30-2015 0 4	0	4
How to search and identify multiple logons to a Windows workstation? Hi all, We are looking for a way to identify when users share their passwords. For example, userA has elevated privi... by taylormimission New Member in Splunk Search 01-30-2015 0 1	0	1