Splunk Search

Community Activity

IFX Field Extraction issue I have the following event (see bottom of the post) and I need help extracting various fields and I am not having muc... by ebailey Communicator in Splunk Search 06-28-2013 0 1	0	1
New sourcetype linebreaking issues Hi, I'm a new Splunk user and I'm trying to define a new source type. My log file looks like: ----------- Name1 --... by gelica Communicator in Splunk Search 06-28-2013 0 3	0	3
Help on flash chart, chart overlay in max, min column and mean line I need help with this advance XML for chart overlaying and flash chart. I need to display a mean line over the column... by sbnoobbb Path Finder in Splunk Search 06-27-2013 1 2	1	2
'Unknown search command 'return' in a new app Setup a new role for a specific app with below configuration. [role_demo] rest_properties_get = enabled search = ena... by daniel_splunk Splunk Employee in Splunk Search 06-27-2013 3 1	3	1
can i create look up for eventtypes ? Hi . I have using the different eventtypes for my search query like this .. 1.et_Accepted 2.et_Rejected 3.et_Except... by rakesh_498115 Motivator in Splunk Search 06-27-2013 1 1	1	1
How to protect from anyone creating lookup tables with outputlookup? It seems anyone can create a new lookup table, or overwrite an existing one's content. Is there a way to set permissi... by sgarvin55 Splunk Employee in Splunk Search 06-27-2013 2 2	2	2
Last event grouped by Hi, I am building an app for managing some network switches. One of the views I want to create has the same data lis... by oscargarcia Path Finder in Splunk Search 06-27-2013 1 4	1	4
how can I change the size of the appLogo area? I would like to add a bigger Logo that is not cut in half. I would like to use a bigger image than 156X43, how can I adjust the size of the top bar area? by arozar Explorer in Splunk Search 06-27-2013 0 1	0	1
Can I make two lookup tables that specify the same output field name? Hi, i have individual IPs and then CIDR blocks that i want to look up and group them using a look up table. I am ass... by xvxt006 Contributor in Splunk Search 06-27-2013 0 5	0	5
lookup table to show values that do not match hi - I have a look-up table of errors codes and descriptions, and a log file with errors codes lookup error_descript... by stephen123 Path Finder in Splunk Search 06-27-2013 0 3	0	3
field extraction where the data may need a lookup I'd like to do a field extraction on these fields: proto=udp/67 proto=tcp/http proto=udp/9060 Should become protoco... by jalfrey Communicator in Splunk Search 06-27-2013 0 2	0	2
configuring splunk to start at boot time config file Is there a .conf file in splunk where you can configure splunk to start at boot time? by aaronkorn Splunk Employee in Splunk Search 06-27-2013 1 5	1	5
Find top n in each group I have a collection of records in [object_name, execution_time] format. I want to gather top 10 (i.e. first 10 in sor... by saumitra Engager in Splunk Search 06-27-2013 0 7	0	7
Problem with extracted field Hi, I am not able to see extracted fields in "Interesting field list",however fields are visible in Manager. What ca... by ChhayaV Communicator in Splunk Search 06-27-2013 0 4	0	4
Problems with search on chart I saw this command and tried to imitate it sourcetype="wind" \| eval intscale="SCALE"+tostring(floor(scale/10)*10) \| ... by kailun92 Communicator in Splunk Search 06-27-2013 1 1	1	1
Issue with props. Hello This is the props.conf which I have now [xxx] TIME_FORMAT = %a %m/%d/%Y %H:%M:%S.%2N (Is this supposed to be... by theouhuios Motivator in Splunk Search 06-26-2013 0 13	0	13
Advance chart question I have these data and I would like to create a chart using different location together against temperature (Y-axis) a... by kailun92 Communicator in Splunk Search 06-26-2013 0 2	0	2
00時00分00秒のイベントが取り込まれない 1秒毎に書き込まれるファイルをSplunkでモニタリングしていたところ、 00時00分00秒の書き込みだけSplunkに認識されませんでした。（勿論、00時00分00秒のログへの書き込みは確認しています。）因みにタイムスタンプはロ... by sunrise Contributor in Splunk Search 06-26-2013 0 3	0	3
db connect and user roles Hi, Is is possible for a user other than admin, power user for example, to setup database connections, databases look... by my_splunk Path Finder in Splunk Search 06-26-2013 0 2	0	2
MySQL Connector Hi I'm new to splunk and using free version . I'm trying to connect MySQL with splunk However I'm not able to see Dat... by ashwinihirlekar New Member in Splunk Search 06-26-2013 0 1	0	1
creating field for url How can I create a field for url? I am unable to do it by field extraction. by labani Explorer in Splunk Search 06-26-2013 0 5	0	5
earliest or latest time in outputcsv filename Hello! I have multiple saved search. Each search covers the period of 12 hours. Accordingly, each search has a earli... by ryastrebov Communicator in Splunk Search 06-26-2013 1 1	1	1
Event Builder I am a newbie to splunk and looking to build events for the below log, {<!-- --> "crash_reasons": [ {<!-- --> ... by msn2507 Path Finder in Splunk Search 06-26-2013 0 1	0	1
Lookup Table Problem Hi, I have a problem when using lookup function in Splunk. I am using a lookup table in C:\Program Files\Splunk\etc\... by sjlin Explorer in Splunk Search 06-25-2013 0 4	0	4
how to transpose rows into multiple columns based on grouping? Hi, I have a query which fetches me the below result in a table: Thread \| Total_Run_Time READER_1_1_1 3... by trkalva Engager in Splunk Search 06-25-2013 0 1	0	1