Splunk Search

Community Activity

	How to parse json into rows? Hi, I have issue similar to: https://community.splunk.com/t5/Getting-Data-In/how-to-split-the-json-array-into-multipl... by maayan Path Finder in Splunk Search 05-01-2023 0 3	0	3
	Splunk display a value when no logs are found Hi ,I have a field which has 3 values i.e., 0 , 1 & 2.0 for Green , 1 for Blue and 2 for Red. I'm using this values t... by Dayalss Engager in Splunk Search 04-30-2023 0 3	0	3
	How to find records based on input from user date? I have set of records where the data has time column in it.Eg: Here I will have an input from user where user will e... by agupta13 Engager in Splunk Search 04-29-2023 0 2	0	2
	How to get the ingest bytes for internal logs? I know how to get the ingest bytes for non-internal logs using this ... index=_internal source="*license_usage.log"... by fredclown Builder in Splunk Search 04-29-2023 0 10	0	10
	Longer time frame does not return results? When I run the following query: "com.server" \| table id uri statusCode _time \| join type=inner saga_id [search "Secon... by yk010123 Path Finder in Splunk Search 04-28-2023 0 3	0	3
	How to create a search for Hosts that failed Authentication this week but were successful last? I have a table that has the following fields: IPHost_Auth _time The _time field shows the time the host was authenti... by atebysandwich Path Finder in Splunk Search 04-28-2023 0 8	0	8
	How to use MV expand to extract a data grouped by itself? Hi splunk community I am currently trying to break up a log. It is in this format after converting to a json Each... by Spunk_user89 New Member in Splunk Search 04-28-2023 0 4	0	4
	Splunk Custom Search Commands: How can I write the generator.py script so that it calls the script.py? Hi everyone,I have a script.py which requires one argument to run normally, for eg. script.py D:\Downloads\12-Dec-202... by siu Loves-to-Learn Everything in Splunk Search 04-28-2023 0 5	0	5
	How to create a custom generating search command? So I have a python script called Analysis.py And normally I would run it locally like this Analysis.py <filepath>, s... by siu Loves-to-Learn Everything in Splunk Search 04-28-2023 0 6	0	6
	How to display two result count in value visualization? Hi community, I have the follow search that return two number for today and yesterday device count per index xyz but... by Roberto-P Explorer in Splunk Search 04-28-2023 0 3	0	3
	How to find traffic change from a search? I have a search and resultant output like shown below:search is --> eventtype=cacti:mirage host=onl-cacti-02 rrdn=tra... by phularah Communicator in Splunk Search 04-28-2023 0 1	0	1
	Why does chart remove the empty x-values made with \|makecontinuous? I want to make an evenly spaced x-axis in a dataset with gaps in it and then use chart to make a trellis view based o... by HrCivilingeniør New Member in Splunk Search 04-28-2023 0 0	0	0
	Is there a way to move Saved Search results (CSV) obtained via PowerShell to a windows directory? I have spent a LOT of time searching for a way to do this. I have saved searches within Splunk Enterprise 9.x (the ... by NHD86 Loves-to-Learn Lots in Splunk Search 04-28-2023 0 0	0	0
	Why are Splunk Field alias created from Ui not visible? So I have an application that runs as a docker container in AWS ECS Fargate, and in log configurations for the contai... by Yashprime07 Explorer in Splunk Search 04-27-2023 0 7	0	7
	Why are values are missing and incorrect when I used stats values() in chart? I had a tabular chart which has component, basket and age column. But the problem was I had same component with diffe... by Vish Explorer in Splunk Search 04-27-2023 0 2	0	2
	How to search use stats count filter two fields? Hi All, I am doing a search for src_ip and DestAdd in a database within a 1 minute time frame. I need to look for src... by longmen Path Finder in Splunk Search 04-27-2023 0 1	0	1
	How to define new field by time ranges? I'm trying to create the below search with the following dimensions. I'm struggling to create the 'timephase' column.... by hollybross1219 Path Finder in Splunk Search 04-27-2023 0 8	0	8
	How to find field with maximum value dynamically? I have a data like this , and i want to display the step with maximum value. Detail: { [-]Id: 12345678RequestComplete... by sivaranjani Explorer in Splunk Search 04-27-2023 0 2	0	2
	Why am I getting where clause? I have a search where I am comparing two indexes for a matching cell and I am trying to filter where Business = 1X...... by hantun Loves-to-Learn Lots in Splunk Search 04-27-2023 0 7	0	7
	How can I sort data into a graph? I have a table like below.Date, count22/12/2014,923/12/2014,1924/12/2014,166/01/2015,47/01/2015,74/02/2015,425/02/201... by karthikTIL Path Finder in Splunk Search 04-27-2023 0 8	0	8
	Summarize data by Kirthika Path Finder in Splunk Search 04-27-2023 0 5	0	5
	Is there a way to regex first part of the URL? Hi, All my URLs have this general format https://value.company.com.au/etc/ Is there a way I can extract URLs and alw... by ebs Communicator in Splunk Search 04-27-2023 0 4	0	4
	How to compare current week to last week in a visualisation? Hello, im looking to compare a count of servers that was reporting into splunk this week and compare to the amount th... by supersnedz Path Finder in Splunk Search 04-27-2023 0 4	0	4
	Can I add federated search as root search in dataset? CAN I ADD FEDERATED SEARCH AS ROOT SEARCH IN DATASETS? I WAS ABOUT TO CREATE A DATAMODEL FOR A DASHBOARD WITH MULTIPL... by Splunker_S New Member in Splunk Search 04-27-2023 0 0	0	0
	How to create a new Quarter field with specific conditions? Hi, I need to set a condition in Splunk for how the business quarters are set up in my place of work. In my job, the... by POR160893 Builder in Splunk Search 04-27-2023 0 2	0	2