Splunk Search

Community Activity

sum function with conditions Hey there, I am trying to get stats for one of our OpEx metrics Working query : index=summary source="c:\\users\\nj... by Raghav2384 Motivator in Splunk Search 05-01-2014 0 5	0	5
Joining Searches for Authentication Times So I have two searches; one for the client_vpn_asa and one for the nac, they both require regex: index=client_vpn_as... by dsmeerkat Explorer in Splunk Search 05-01-2014 0 4	0	4
Increase the number of values shown for selected fields Is there a way to increase the number of values shown for selected fields from 10 to 20-25? A customer has put in a r... by theouhuios Motivator in Splunk Search 05-01-2014 0 3	0	3
Transaction not showing some events in table format I am using Transaction command to group events in one line and want to see this in a table format. Have the "order_n... by jinal24 New Member in Splunk Search 04-30-2014 0 1	0	1
limit results by 10 events per day in one month timeframe Hi- I have this search query: "source="/prod/splunkforwarder/bin/scripts/jrexpiry.sh" npw.gov.se" and my time frame i... by Isaias_Garcia Path Finder in Splunk Search 04-30-2014 0 1	0	1
How to execute a shell script kept in app's bin folder using a dashboard? I have a requirement to execute a script (does file cleanup) to be executed from a dashboard button (so as to avoid l... by somesoni2 Revered Legend in Splunk Search 04-30-2014 0 1	0	1
updrate SPLUNK 6.0 to 6.0.3 Steps to perform upgrade? by laurie_maginn New Member in Splunk Search 04-30-2014 0 1	0	1
Timestamp splitted in log files Hi all, I'm trying to extract the timestamp from a crappy unstructured logs. Every event is one line with 300 charact... by bizza Path Finder in Splunk Search 04-30-2014 0 10	0	10
Troubling json extraction I can't for the life of me figure this out. There seem to be examples all over and none of them address this. I hav... by Cuyose Builder in Splunk Search 04-30-2014 0 5	0	5
how to take the values from nth field Hi all, Below is my search... source="computer_status_export_SEP12_Mar27.csv" \| dedup "Computer Name","MAC Address1" ... by thambisetty SplunkTrust in Splunk Search 04-30-2014 0 9	0	9
HTML Dashboard - Clarification on the search A HTML Dashboard is created that has five textboxes and one search button.When the search button is clicked,the value... by Jananee_iNautix Path Finder in Splunk Search 04-30-2014 0 1	0	1
List of default working extractions in Splunk like "\| extract access-extractions" Hi All, So I was looking at some unextracted web log data, found this link: http://docs.splunk.com/Documentation/Spl... by Pierceyuk Path Finder in Splunk Search 04-30-2014 0 3	0	3
_time from filename using Eval Hi My file name is like ABC20140321.csv I want splunk to read _time value from this file name. I tried to edit datet... by SplunkBaby Explorer in Splunk Search 04-30-2014 0 5	0	5
eval if isnull hope fill other values Hi: My weburl sometim is null, i hope if weburl is null then weburl1 fill to weburl. I'm try "eval n=if(isnull(hostn... by chengyu Path Finder in Splunk Search 04-30-2014 0 3	0	3
Failed Logins I am observing the failed logins of a user and it is getting locked quite frequently morning between 01:30 AM to 02:3... by udayk1 Path Finder in Splunk Search 04-29-2014 0 3	0	3
how to do "where field in" with splunk I need to do a query which looks like field in [list of values]. The list could be another query's return values. by hongduan Explorer in Splunk Search 04-29-2014 1 8	1	8
Date Field calculations help Hello All, I am hoping one of you can help me out with the following: I have a Powershell script which is displaying ... by saurabhkunte Path Finder in Splunk Search 04-29-2014 0 4	0	4
Summary Index Migration Hello Everyone, We currently have a Splunk instance up and running and are looking to stand up a completely differen... by Olamide22 Explorer in Splunk Search 04-29-2014 0 3	0	3
How to load a list of values for a search from the GUI How can I look for a list of 50+ values without typing in "foo=1 OR foo=29 OR foo=4219...". Obviously without touchi... by larrywest Explorer in Splunk Search 04-29-2014 0 2	0	2
Timecharting the sum of a max value in a field. I think I have the hard part of this figured out but, I'm struggling with how to send it into time chart. Here's the ... by cvervais Path Finder in Splunk Search 04-29-2014 0 17	0	17
How to make from one row two? Hello All My table looks like these Number Name Position Login1 Login2 1 John expert johns1 johns2 is it po... by andrey2007 Contributor in Splunk Search 04-29-2014 0 8	0	8
axisX.minorUnit Hello! Why the axisX.minorUnit option does not work in splunk-6? Is there a known issue or do I do something wrong? I... by 0range Communicator in Splunk Search 04-29-2014 0 3	0	3
Extracting fields and values Hi , I have data in the below format: [mpeg-1 audio, Service 1, PID 111] [Average rate 0.201 Mbits/s] [Min rate 0.19... by kavyatim Path Finder in Splunk Search 04-29-2014 0 4	0	4
How to track application startup time? I have an application log that has two log lines I'm interested in trending. The first line is: timestamp Applicati... by thesteve Path Finder in Splunk Search 04-29-2014 0 7	0	7
Each bucket of time, which event (or field) hit the max value? Let consider these events: 10:00:01 Player=player1, FragsPerHour=12 10:00:01 Player=player2, FragsPerHour=39 11:00:01... by manus Communicator in Splunk Search 04-29-2014 0 3	0	3