Splunk Search

Community Activity

timechart day of week Hi, I have a report which is a basic timechart, but in the output like to put the day of week as well as the day So... by ewanbrown Path Finder in Splunk Search 12-12-2014 0 3	0	3
How to extract a field with rex for a stats search? Hello, I am having trouble getting rex to work. I have the following : field1 -> { "param1" : { "param1Status" : "... by atanasmitev Path Finder in Splunk Search 12-12-2014 0 7	0	7
How to create a market basket analysis? HI guys, Been trying to create a market basket analysis using splunk. Simply, I would like to build a pivot that wou... by tylampella New Member in Splunk Search 12-12-2014 0 2	0	2
How to display the values of a field in a chart, not the count of the number of events? Hello ! I have a field called Total Value that contains currency values . I want to use these values in my char... by MENININHU Engager in Splunk Search 12-12-2014 1 2	1	2
How to select specific fields conditionally based on user input for a drilldown search? Hi, I want to select fields conditionally based on user input. It is a drilldown search. I want to show specific fiel... by masumbuet New Member in Splunk Search 12-12-2014 0 1	0	1
In splunk free can I change the logo? I cant seem to do this. I've created an application.css file too. I'm using 6.2 by harshnagpal Engager in Splunk Search 12-12-2014 0 1	0	1
Can I have 2 searches in one string to shorten my search for information from 2 hosts? Hi, I want to find information from 2 hosts, I can do it by running the command below: 192.168.144.1 OR 192.168.24... by shingdayho Explorer in Splunk Search 12-12-2014 0 8	0	8
return events with null values in an eval function I am using the below query, but few events in the logs don't have service_name values. They only have operation_name.... by edookati Path Finder in Splunk Search 12-11-2014 0 2	0	2
Regular expression in Datamodel attribute Hi splunkers, I need to create a new attribute in one datamodel. I think I don't understand the syntax or what's goi... by snemiro_514 Path Finder in Splunk Search 12-11-2014 0 1	0	1
Use of Count by Date in \|metadata type=hosts Hello. I would like to know if there is any speicific - convenient - way to perform stats count by various date. Us... by hcheang Path Finder in Splunk Search 12-11-2014 0 4	0	4
Amending certain characters for values in an extracted field I'm currently trying to join two log events across separate sources using their file name. The issue i have run in to... by ajm33 Engager in Splunk Search 12-11-2014 0 3	0	3
Problem extracting field from a field Splunk 6.2 I used the Field Extractor app to extract a field from an previous field. The resulting extraction tested... by chengka Explorer in Splunk Search 12-11-2014 0 6	0	6
Chart Background or Text Color I have a chart displaying in dashboard panel. When a value is 0 I'd like to call it out by makeing the text or backgr... by andrewkenth Communicator in Splunk Search 12-11-2014 0 1	0	1
How to extract field for the data with spaces Hi I have data as below. 9B 85 65 70 20 61 6C 69 76 65 2C 33 30 30 30 30 3C 00 is one pattern 9B 85 65 70 20 61 6... by sumanth_isac Path Finder in Splunk Search 12-11-2014 0 3	0	3
charting state as sequence of values in time I have a log that contains a polling state of a device, PLUGGED/UNPLUGGED, logged every 10 s. I want to chart a timel... by idsiano Explorer in Splunk Search 12-10-2014 0 2	0	2
Modifying multi line event before indexing Hello, i have an application that has an bug in the logging, but i need to workaround it. log structure: Dec 10 ... by mmaier_splunk Splunk Employee in Splunk Search 12-10-2014 0 4	0	4
How can I pass a variable to the tail command? ... \| tail 200 works fine. ... \| eval tail_value=200 \| tail tail_value throws this error: Error in 'tail' comm... by terryloar Path Finder in Splunk Search 12-10-2014 0 2	0	2
Identify who has a particular IP address and compare that against a different set of logs I have one set of logs showing authentication which contain time stamps, user names, and IP addresses (source 1). I'd... by Runals Motivator in Splunk Search 12-10-2014 0 5	0	5
help to make regex hello all! I have a sentense of raw data so I want to extract only one field. raw data's example : A,B,C,D,E,F,12... by ckals46 New Member in Splunk Search 12-10-2014 0 1	0	1
joining result of a query with another db query I have two queries, 1) index = coreops sourcetype=sitescope_monitorstat UpTime \| rex field=_raw "days=\s(?\d+)" \| wh... by anoopambli Communicator in Splunk Search 12-10-2014 0 1	0	1
Help group by second level using _time function We have the logs with milliseconds, but when use _time function and its not giving the second level grouped results, ... by dhavamanis Builder in Splunk Search 12-10-2014 0 5	0	5
Show stats for a fixed set of hosts I'm trying to build a table of outages. For example: Host Num. Outages A 1 B 2 C 0 Servers ... by prashantjois Explorer in Splunk Search 12-10-2014 0 5	0	5
Need to edit search to NOT alert if another similar alert comes in within 5 minutes Hello, I have two searches that alert on every occurrence: 3rd party agent drops offline: index=app_evtlogs_prod ... by agoktas Communicator in Splunk Search 12-10-2014 1 8	1	8
How to Push a Value onto a MultiValue field Hi, I would like to be able to push a new value into a multi-valued field, from another field. ie. Field1="Derek"... by DerekKing Path Finder in Splunk Search 12-10-2014 1 2	1	2
How to calculate average rate of occurrence for a field? Hello, I am looking for a way to calculate the avg rate of occurrence for a particular field. There are multiple va... by _gkollias Builder in Splunk Search 12-10-2014 0 1	0	1

Get Updates on the Splunk Community!

Monitoring AI Agents with Splunk Observability Cloud

Let’s say I’m running a travel planning AI app in production. A user asks for three concise hotel options in ...

[Puzzles] Solve, Learn, Repeat: Tiling

This puzzle (first published here) is based on finding groups of tessellated tiles (inspired by floor tiles I ...

SOK it to Me: Top 3 Benefits of Using Splunk Operator on Kubernetes that’ll Make ...

Thursday, July 9, 2026 | 11:00AM–12:00PM PDT Duration: 1 hour (includes Q&A) Managing can feel like a ...

Splunk Search

timechart day of week

How to extract a field with rex for a stats search?

How to create a market basket analysis?

How to display the values of a field in a chart, not the count of the number of events?

How to select specific fields conditionally based on user input for a drilldown search?

In splunk free can I change the logo? I cant seem to do this. I've created an application.css file too. I'm using 6.2

Can I have 2 searches in one string to shorten my search for information from 2 hosts?

return events with null values in an eval function

Regular expression in Datamodel attribute

Use of Count by Date in |metadata type=hosts

Amending certain characters for values in an extracted field

Problem extracting field from a field

Chart Background or Text Color

How to extract field for the data with spaces

charting state as sequence of values in time

Modifying multi line event before indexing

How can I pass a variable to the tail command?

Identify who has a particular IP address and compare that against a different set of logs

help to make regex

joining result of a query with another db query

Help group by second level using _time function

Show stats for a fixed set of hosts

Need to edit search to NOT alert if another similar alert comes in within 5 minutes

How to Push a Value onto a MultiValue field

How to calculate average rate of occurrence for a field?

Monitoring AI Agents with Splunk Observability Cloud

[Puzzles] Solve, Learn, Repeat: Tiling

SOK it to Me: Top 3 Benefits of Using Splunk Operator on Kubernetes that’ll Make ...

How to get an extract of threshold values set in s...

how to query OCI Audit logs from Datasafe

SPLUNK ES 8.2.3 Drill Down not appearing

Using Splunk to Analyze Web Traffic & Machine-Gene...

How can i export a list of all services in APM

Splunk Search

Join the Conversation