Splunk Search

Community Activity

How to build multisearch dynamically? This is mostly just a curiosity, motivated by this post on how to compare a particular time interval across multiple ... by w564432 Explorer in Splunk Search 06-14-2023 0 7	0	7
Is there any way to display single accurate values within each cell of the table? I have used search query like this- \| savedsearch REPORT1 \|chart values(COLUMN3) AS Status BY COLUMN2 PROCESS_ID\| fil... by Sss Path Finder in Splunk Search 06-14-2023 0 2	0	2
Why am I am receiving an error in 'rex' command? I am trying to use a similar splunk query:index="myIndex" appname="myapp" msg.result.message ="TradingSymbol(s):" \|... by Sureshp191 Explorer in Splunk Search 06-14-2023 0 4	0	4
How to go about stats count by a values between a range? I am trying to return data for a pie chart with a specified range of values. How would I go about this? \| stats co... by jenkinsta Path Finder in Splunk Search 06-14-2023 0 2	0	2
Is it possible to consider "time" as "_time" on logstash config? Hi I have logstash config that send logs to Splunk HEC. these data contain field that call "time". Now question is: I... by indeed_2000 Motivator in Splunk Search 06-14-2023 0 5	0	5
Why is search query within link is showing "Unexpected close tag" error? We are trying to run a rex command inside of a custom drill down link. Here is the relevant XML Code we are using: ... by whorst1 Engager in Splunk Search 06-14-2023 2 3	2	3
How can we create an API call that returns a link to a report? We need to call a search via the API and return a link to a report, produced by this call. Is it doable? So, I have s... by danielbb Motivator in Splunk Search 06-14-2023 0 1	0	1
Can I write a CSV Lookup that's Partial Matching? Dear All I have a CSV lookup with a column name column1 with below values MicroBest GoDear Bear And I have some l... by pagnihot Path Finder in Splunk Search 06-14-2023 0 1	0	1
How to split an event into parts and recombine with a common header? Hey all - thanks in advance!I have _raw log data that contains a header section and then what appears to be two entri... by curtisjester Explorer in Splunk Search 06-14-2023 0 5	0	5
How can I extract multiple file names from an event and add it as a separate field using rex command? Hi Team, We have a raw event where the message field consists of multiple file names, we want to extract those and ad... by Renunaren Loves-to-Learn Everything in Splunk Search 06-14-2023 0 5	0	5
How to extract field names against values in one (or more field)? Hi guys, Looking for help framing a query for the following scenario: index=index "designated field" Events show... by gordone Explorer in Splunk Search 06-14-2023 0 3	0	3
How to use the values of a CSV within a search? Hi all, Very new to Splunk here. I'm hoping to get some help. I'm trying to use some of the values in my CSV file as ... by TolTest Explorer in Splunk Search 06-14-2023 0 10	0	10
Does the rex command filter events if the regular expression fails to match? I'm trying to use a regular expression in a summary query. I want to get all events so that nothing is omitted and I ... by entpnerd Explorer in Splunk Search 06-14-2023 0 2	0	2
What is the meaning of table immediately before the lookup command? Hi all,I would like to know one thing.reproduction procedureSTEP1 Execute the following command=====================... by hasegawaarte Explorer in Splunk Search 06-14-2023 0 5	0	5
How to fetch scheduled time and dispatched time of saved search? Hello All,How do I find scheduled time and dispatch time of each saved search and alert?The goal is to fetch the two ... by Taruchit Contributor in Splunk Search 06-13-2023 0 6	0	6
How get a total count based on the substring value? Below is the splunk query, (My.Message has many various types of messages but the below one is what I wanted)index="... by Sureshp191 Explorer in Splunk Search 06-13-2023 0 3	0	3
How to get only search result to shows only for the match that has 18 alphanumeric character from the list? Hi Ouput of my search result shows FieldA ========= abcdabcdabcd001234 abcdef-gef exyza-123 xxxxyyyy-abcd how t... by akshayinnamuri Loves-to-Learn Lots in Splunk Search 06-13-2023 0 1	0	1
How get a stats count and split a string to get a total count? Please help me, below is my query index="myIndex" app_name="myappName" My.Message = "*failed to retrieve the workOrd... by Sureshp191 Explorer in Splunk Search 06-13-2023 0 6	0	6
How to "Join" REST with metastats to get sourcetypes by index? I have been wondering how to produce a table Of indexes and the sourcetypes used in them, something like: \| res... by SeanBatt Explorer in Splunk Search 06-13-2023 0 6	0	6
How to achieve conditional count for multivalue field? Hi, I'm kind of new to Splunk and I was wondering if someone could help on this: What I'm trying to do is a timechart... by luis_carlos Engager in Splunk Search 06-13-2023 0 1	0	1
How to get a list of websites from IIS servers with the Splunk IIS Addon? Hello We currently have multiple IIS servers with multiple websites and our goal is to setup a dashboard “overview” p... by Hudond Path Finder in Splunk Search 06-13-2023 0 8	0	8
How to display a single error in multiple inputs? Hi , I have a search query - \| search Region = EMEA\| eval Status=case(Statistic=0,"Green" ,Statistic=2,"Red",Statist... by Dayalss Engager in Splunk Search 06-13-2023 0 3	0	3
How to write a query to use regex on the basis of if statement? HI, I am looking for splunk query to use regex on the basis of if statement. Query: index=jfrog_index "org.artifact... by Abhineet Loves-to-Learn Everything in Splunk Search 06-12-2023 0 4	0	4
How to optimize search query with join? Hi All, i am using below query to get the common results on the basis of correlation_id but it is very slow,I need to... by Splunk4 Explorer in Splunk Search 06-12-2023 0 5	0	5
How to compare difference in a field from two different events? I am looking to compare two events in same index and sourcetype differentiated by snapshot id's, the main task is to ... by ashvinpandey Contributor in Splunk Search 06-12-2023 0 1	0	1