Splunk Search

Community Activity

show transactions that are taking 20% more time than previous year Hi splunkers, I came across a situation where 1) I have to find out transactions that are taking 20% more time than ... by thirumalreddyb Communicator in Splunk Search 02-28-2013 0 1	0	1
Different TimerangePicker Options for Different Panels on Same Dashboard Hi, I've 10 panels on a dashboard displayed using Advanced XML & each of those are having drop-down which uses TimeR... by freephoneid Path Finder in Splunk Search 02-27-2013 1 2	1	2
Lookup Configured, Now I Need More Fields... We are comparing a list of policies (uploaded as a lookup, using "policywithdescs") against our firewall data and det... by aferone Builder in Splunk Search 02-27-2013 0 1	0	1
alert when one transaction duration more than average duration*10? There are continuous transactions' log into Splunk. Is it possible to let Splunk alert when some transaction's durati... by sonicant Path Finder in Splunk Search 02-27-2013 0 6	0	6
Transaction by time range and calculate I have a log that tracks the number of documents. I would like to know how to find and table/graph the number of NEW ... by lain179 Communicator in Splunk Search 02-27-2013 0 2	0	2
Add column total to timechart graph as annotation Hi, I have a timechart that, say, graphs successful calls over a month but it would be good to add the total for the ... by thesmith New Member in Splunk Search 02-27-2013 0 1	0	1
Combine multiple spans in timechart Hi, I would like to chart daily, weekly and monthly active users (a lot like Facebook's Insights) all on the same gra... by thesmith New Member in Splunk Search 02-27-2013 0 1	0	1
Splunk search command for daily indexed volume? Hi, I am currently testing out two searches to report and alert on the daily indexed volume. The first search is ... by remy06 Contributor in Splunk Search 02-27-2013 3 3	3	3
Build a chart of multiple data series Hi to everyone, I am designing an application where my users will potentially need to be able to generate a chart w... by guilmxm Influencer in Splunk Search 02-27-2013 1 3	1	3
How to find address from gps coordinates specified in a field and write the address to a new field? I need to use the latitude and longitude co-ordinates specified in my field gps and find address of the location the ... by RohiniJindam Path Finder in Splunk Search 02-27-2013 0 2	0	2
How to find the most recent event for a user preceding some other event I have a set of user activity logs, each of which identifies an event-type and a user-id. One possible event-type is... by MatMeredith Path Finder in Splunk Search 02-27-2013 1 3	1	3
How do I parse a text line and grab only 1 value New to splunk so don't laugh too much at this - I have many strings that look similiar to this: [71] 20130226.01595... by zkxi98m New Member in Splunk Search 02-26-2013 0 1	0	1
Can i have a form with two search queries and two search buttons ?? Hi.. Can I have a form or dashboard ..with two search buttons ...i.e I need two panels 1 and 2 ..in first panel sear... by rakesh_498115 Motivator in Splunk Search 02-26-2013 0 8	0	8
Epoch timestamp extraction not working I'm having difficulty extracting an Epoch timestamp in the following format - 1361463359598 I can validate that thi... by Flynt Splunk Employee in Splunk Search 02-26-2013 4 1	4	1
PDF Report Server v4.3.1 on sles 11.1 pdf server is local with splunk. when i try to preview a report the graphs/pictures are blank in... by cvajs Contributor in Splunk Search 02-26-2013 0 2	0	2
Regular expression works inline via 'rex', but not in EXTRACT. I have an enterprise application made of components that log to several different files. Some filenames are occasion... by bsayatovic Path Finder in Splunk Search 02-26-2013 0 2	0	2
Splunk Errors Hi, I am getting this error when I open one of my dashboards today. " Error in 'databasePartitionPolicy': Failed to ... by sriva6 New Member in Splunk Search 02-26-2013 0 4	0	4
Top Url by place for summary indexing Hi, I found on this forum the following search : top 10 URL for top 10 Users. I modify this search to comply with my... by o_calmels Communicator in Splunk Search 02-26-2013 1 1	1	1
Problem in Lookup Hi, I am getting the below message when I am using lookup my command .... \| lookup "Full_CDI.csv" user_sso Empty c... by abhayneilam Contributor in Splunk Search 02-26-2013 0 2	0	2
Problem with sources in search I know this may sound retarded, but I'm really new to Splunk so any help would be appreciated! I have been wondering.... by jaterlwj Explorer in Splunk Search 02-26-2013 0 5	0	5
Counting events within a rolling window (last X seconds from the event's time) Hey everyone, Given the following dummy events, how can I maintain a count of the events (by FIELD_X) based on a rol... by Kindred Path Finder in Splunk Search 02-26-2013 0 4	0	4
Extracting field from JSON and XML response Depending on the content-type, the response that is logged is either in JSON or XML. I want to create a single query ... by dbautist Explorer in Splunk Search 02-25-2013 0 3	0	3
creating nested tables Hi , my search is like specified below, Index=main source=file.txt xxx=*\| stats values(a) values(b) values(c) by xxx ... by smolcj Builder in Splunk Search 02-25-2013 0 6	0	6
Extracting selected hosts with regex / Regex hosts with exceptions Hi Splunkers, I am trying to extract the hosts via regex. host="*" \| regex host="([a-zA-Z0-9]([a-zA-Z0-9\-]{0,61}[a... by lemikg Communicator in Splunk Search 02-25-2013 1 4	1	4
How to generate Bubbles in advance xml? using CDR data,I want to display no of call drops occuring in each base station in the form of bubbles or (any visual... by renuka13 Explorer in Splunk Search 02-25-2013 0 1	0	1