Splunk Search

Community Activity

How to group together events based on their relative distance in _time? Hello All, I'm trying to figure out how to group certain events together if they happen within 1 second of each othe... by thisissplunk Builder in Splunk Search 06-13-2014 0 2	0	2
How to extract date and time in Splunk? I am having problems getting splunk to recognize date/time. The txt file I am extracting data from has multiple sourc... by DonDandrea Path Finder in Splunk Search 06-13-2014 0 2	0	2
Cascaded search with tabular data Given a normal http log I want to be able to use the tabular data (or list) from one search as criteria in a second s... by drodman29 Path Finder in Splunk Search 06-13-2014 0 2	0	2
Regex in inputs.con Hi. I have this "problem": I get files delivered into the same folder containing the same data, but with different fi... by mtyrefors Engager in Splunk Search 06-13-2014 2 3	2	3
Take an average of values in a cell from every four rows Hi, I have a CSV file, which looks as follows: ID time value parameter 1 0000-0015 12 param1 1 ... by harshal_chakran Builder in Splunk Search 06-12-2014 0 2	0	2
DB input configuration setup for oracle database Hi , I recently installed DB Connect and I am setting up a new DB input to index db space used in Oracle. Please see ... by gudli618 New Member in Splunk Search 06-12-2014 0 10	0	10
Adding Outputs of a Search to Timechart Hi All, I'd like to add duration and last weeks avg duration values in to timechart to help display time better, how... by _gkollias Builder in Splunk Search 06-12-2014 0 6	0	6
Splunk PDF export issue with "empty" pdf Actually the view below shows "No results found." in the browser by opening the view and as soon as I try to generat... by flo_cognosec Communicator in Splunk Search 06-12-2014 0 2	0	2
Consolidate multiple sparklines into a single sparkline Hello, I would like to consolidate multiple sparklines from different rows into a single sparkline, that shows the ... by splunkbeginner2 Path Finder in Splunk Search 06-12-2014 1 2	1	2
stats/chart Only Summing Cells with Multiple Values If I have fields that have the potential to contain any number of values, from null to many, how can I get the sum fu... by Rushingjs New Member in Splunk Search 06-12-2014 0 1	0	1
Timechart WHERE clause not behaving as expected In the file /var/log/server.log, we have one log line each time a host sends a heartbeat to our service. I've got th... by jluxenberg Engager in Splunk Search 06-12-2014 3 3	3	3
weird ip address with leading zeros Hi all, I have a log file which has weird ip addresses as followings. There are leading zeros. 2014.06.10 13:14:56 ... by tuneit New Member in Splunk Search 06-12-2014 0 2	0	2
Replace A pattern Splunk Hello Guys , I have a field Month that have values like this 1-2013 10-2014 9-2014 i would like to get 0X-YYYY if ... by baranova New Member in Splunk Search 06-12-2014 0 2	0	2
Regex in splunk Hi, I have data like below, Contact_Number---------------Name land="1234" Phone="324"------Kumar land="3254" phone=... by thambisetty SplunkTrust in Splunk Search 06-11-2014 0 7	0	7
regex expression works sometimes and not at others Hello, I am working with Omniture Data contained in a csv in a scripted data input. I fetch a file using curl, chop... by bsizemore Path Finder in Splunk Search 06-11-2014 0 1	0	1
How to identify an 'Upload' in search? I'm trying to search for logs relating to an upload of data. For example, a computer uploads a file to dropbox or som... by thomashigginson Path Finder in Splunk Search 06-11-2014 1 3	1	3
add sum of previous point to next minute value Hi, I want increment graph, current minute transactions do sum with previous minute transaction and this will contin... by rameshlpatel Communicator in Splunk Search 06-11-2014 0 5	0	5
Easy way to match just the beginning of a field value Hi Folks, I'm having a hard time working around using a wildcard within an eval, which isn't possible as far as I kn... by jravida Communicator in Splunk Search 06-11-2014 0 2	0	2
Extract string using rex I have data that looks like: 20140609 19:14:03 [PERF] [CREATE PLAN START] Action=CreatePlan, and would like to extrac... by RVDowning Contributor in Splunk Search 06-11-2014 0 2	0	2
How to use regex in field extraction? I can't seem to get my regex to work as a field extraction. below is an example string and the regex I'm trying to u... by digital_alchemy Path Finder in Splunk Search 06-11-2014 1 2	1	2
Splunk/eval ignores real numbers less than 1.0 Splunk seems to be ignoring numbers less than 1.0 regardless of incoming precision. If my tField value is 1.000 or g... by nysoitsmiket Explorer in Splunk Search 06-11-2014 0 4	0	4
Show only NON distinct values for a given field. I am looking to compare a list of non unique usernames with unique IP's, and specifically analyze the occurences wher... by soundchaos Path Finder in Splunk Search 06-11-2014 1 2	1	2
how to add a string to a table element? Hello I have two fields field1 and field2 extracted from my search and I would like to present then in a table, with... by wsw70 Communicator in Splunk Search 06-11-2014 1 1	1	1
Asset Discovery I've noticed on the dashboard that the scan isn't detecting any particular OS - leaving it as unknown for most of the... by tmccool New Member in Splunk Search 06-11-2014 0 1	0	1
How to compute time range spread over multiple files. Hi Everyone, I want to calculate availability time range of each employee based on the records present in two files (... by sanjeevdixit Explorer in Splunk Search 06-11-2014 1 2	1	2