Splunk Search

Community Activity

how to do "where field in" with splunk I need to do a query which looks like field in [list of values]. The list could be another query's return values. by hongduan Explorer in Splunk Search 04-29-2014 1 8	1	8
Date Field calculations help Hello All, I am hoping one of you can help me out with the following: I have a Powershell script which is displaying ... by saurabhkunte Path Finder in Splunk Search 04-29-2014 0 4	0	4
Summary Index Migration Hello Everyone, We currently have a Splunk instance up and running and are looking to stand up a completely differen... by Olamide22 Explorer in Splunk Search 04-29-2014 0 3	0	3
How to load a list of values for a search from the GUI How can I look for a list of 50+ values without typing in "foo=1 OR foo=29 OR foo=4219...". Obviously without touchi... by larrywest Explorer in Splunk Search 04-29-2014 0 2	0	2
Timecharting the sum of a max value in a field. I think I have the hard part of this figured out but, I'm struggling with how to send it into time chart. Here's the ... by cvervais Path Finder in Splunk Search 04-29-2014 0 17	0	17
How to make from one row two? Hello All My table looks like these Number Name Position Login1 Login2 1 John expert johns1 johns2 is it po... by andrey2007 Contributor in Splunk Search 04-29-2014 0 8	0	8
axisX.minorUnit Hello! Why the axisX.minorUnit option does not work in splunk-6? Is there a known issue or do I do something wrong? I... by 0range Communicator in Splunk Search 04-29-2014 0 3	0	3
Extracting fields and values Hi , I have data in the below format: [mpeg-1 audio, Service 1, PID 111] [Average rate 0.201 Mbits/s] [Min rate 0.19... by kavyatim Path Finder in Splunk Search 04-29-2014 0 4	0	4
How to track application startup time? I have an application log that has two log lines I'm interested in trending. The first line is: timestamp Applicati... by thesteve Path Finder in Splunk Search 04-29-2014 0 7	0	7
Each bucket of time, which event (or field) hit the max value? Let consider these events: 10:00:01 Player=player1, FragsPerHour=12 10:00:01 Player=player2, FragsPerHour=39 11:00:01... by manus Communicator in Splunk Search 04-29-2014 0 3	0	3
Get a Chart rendering as when using predict command - upper, middle and lower with transparency Hi, Does anyone knows how i could get a chart in simple xml to render as the same it automatically does when using t... by guilmxm Influencer in Splunk Search 04-29-2014 3 6	3	6
LDAP user role setting I have configured LDAP for user authorization and role management. I want all the users in our organization have limi... by anoopambli Communicator in Splunk Search 04-29-2014 0 4	0	4
Avoid Duplicate Events using splunk DB Connect Hi, I am using splunk DB connect to get data from MYSQL to splunk server.I am taking dump everytime.Say i have 20 row... by swathis Explorer in Splunk Search 04-28-2014 3 13	3	13
Splunk Stability??? It seems we are having several issues with our Splunk servers/architecture and I wanted to know if anyone else has ha... by kmcconnell Path Finder in Splunk Search 04-28-2014 1 4	1	4
Passing eval value to script Hi friends I have been working for hours, but it has been impossible. It seems too easy, but i don´t manage to resol... by albertohontoria Path Finder in Splunk Search 04-28-2014 0 5	0	5
Timechart along with top and sort Hi , All I want do is to convert the below stats table into a timerange result. I'm using a LDAP log and getting the... by xbbj3nj Path Finder in Splunk Search 04-28-2014 0 7	0	7
how to specify or condition in if statement Hi I want to write the search like this.. if(file_path=("C:" OR "D:" OR "E:" OR "c:" OR "d:" OR "e:"),"Local",file_p... by thambisetty SplunkTrust in Splunk Search 04-28-2014 0 2	0	2
How to span time to search for absence of value with eval case/if I'm getting lost while trying something simple. I would like to: per host, per 2-minute span, search all ARGS (field... by essklau Path Finder in Splunk Search 04-28-2014 0 9	0	9
Search for Users that have not Logged-in in the Last 30 Days I need to create a search that will look back over the last year and list all users that have not logged into a webse... by jodros Builder in Splunk Search 04-28-2014 0 2	0	2
Subsearch in Pivot child object creation Hi All, I stumbled into this difficulty when trying to create a child object that (I think ..) need sub search. I ... by frankagustinus Explorer in Splunk Search 04-28-2014 0 2	0	2
sourceをいくつか設定していると最初のsourceの情報しかとってこない以下のqueryを実行すると、取ってきてほしい情報(UIDとwifi)がかけてしまいます。原因はおそらくですが、sourceをいくつかORで繋いで指定しており、その中の一つのsource(source=device)からしか情報をと... by appleman Contributor in Splunk Search 04-28-2014 0 3	0	3
HiddenPostProcess clarification The limitations for HiddenPostProcess are described as follows: "If the base search is a non-transforming search, Sp... by aweitzman Motivator in Splunk Search 04-28-2014 0 6	0	6
Bug ? search result problem Hello, We encounter a problem during search. A search result differ from finding the results expected and not find... by tardieuxth Engager in Splunk Search 04-28-2014 0 3	0	3
extracting log data Hi, i have data in following format PacketPos[503081044] PosInPacket[ 38] NALlength[11634] NAL[98983] Type[Non IDR s... by kavyatim Path Finder in Splunk Search 04-28-2014 0 10	0	10
Subquery Does Not Return Any Result I have two different sourcetypes: S1 and S2 (under different indexes) I want to print, three extracted custom fields ... by pramit46 Contributor in Splunk Search 04-28-2014 0 2	0	2