Splunk Search

Community Activity

Lookup: Escaping quotation character in field value Hi SB, Playing around with lookup tables and it appears I can not have an escaped quotation character (e.g. ") withi... by MHibbin Influencer in Splunk Search 11-21-2012 0 1	0	1
Tracking user activity on website Hey, I have problem to determine the urls which lead a customer to a certain url "x". I have an apache-log in which I... by jtworzydlo Path Finder in Splunk Search 11-21-2012 0 2	0	2
Show Single Value Panels in a Table I have 66 single value panels to display in my dashboard. So far I am finding that I can only go three columns wide... by aleem SplunkTrust in Splunk Search 11-21-2012 2 3	2	3
Sequencing Saved Searches Hi, I have a saved search, which is currently scheduled, and creates a summary index. I have other saved searches t... by JovanMilosevic Path Finder in Splunk Search 11-21-2012 0 2	0	2
calculate time difference between 2 fields \| sum and group by month I have a log that looks like this: start_time="2011-11-19T13:32:59" end_time="2011-11-19T13:34:59" How do I create... by andyk Path Finder in Splunk Search 11-21-2012 2 2	2	2
multiple search output in a single table/list/something hi all, i am doing an splunk app to reduce the complexity in reading a log file. I am done with the field extractions... by smolcj Builder in Splunk Search 11-20-2012 1 6	1	6
how to retrive the values above and below the certain limit hi all , source="taskmanger_logs"\|transaction TaskAction startswith=START endswith=Succeeded\|table TaskAction durati... by splunkpoornima Communicator in Splunk Search 11-20-2012 0 1	0	1
regex for event type. Hi, is it not possible to use a regex to determine an event type. I would like to usee something like: \d{4}-\d{1,2... by brettcave Builder in Splunk Search 11-20-2012 0 7	0	7
Creating view result link Hi anyone have links to share with me on how can I create view button for my application. I displayed some single va... by elaine0102 Explorer in Splunk Search 11-20-2012 0 7	0	7
confused about wildcards in monitor in inputs.conf I have directories of logs organized as: /opt/logjam/logs/nonprod/<service>.<environment>/<logs> I am attempting t... by milkovic New Member in Splunk Search 11-20-2012 0 1	0	1
Timechart with multiple fields and calculating percentage My query is something like .. \| eval color_and_shape = color + "/" + shape \| timechart count as total, count(eval(he... by benobviate Explorer in Splunk Search 11-20-2012 1 1	1	1
Trying to schedule a search and save it in summary index, index=new Search peer denpda3log01 has the following message: received event for unconfigured/disabled index='new' with source=... by mike7860 Explorer in Splunk Search 11-20-2012 0 1	0	1
Regex for SAR data in UNIX Hello I need to create a timechart for the data below based on cpu's available and the utilization of that specific... by theouhuios Motivator in Splunk Search 11-20-2012 0 1	0	1
Calculation of area of a graph Hi there, today I have a special question. I am not sure how to realise this. I have on the one hand a lot of perfor... by nebel Communicator in Splunk Search 11-20-2012 0 2	0	2
Is there a way to manipulate time range picker using just a seach query? Since some days ago I was thinking a way to manipulate the "time range picker" or even the period to retrieve data fr... by wagnerbianchi Splunk Employee in Splunk Search 11-20-2012 0 5	0	5
how to change graph line color I have drawn one line graph by severity. and it has three types: Error,Warning,Notice. I want to Display Error line i... by geetanjali Path Finder in Splunk Search 11-20-2012 0 2	0	2
text box input Hi all in a form i need a Text box .in that whatever the value i am giving it should reterive only those task havin... by splunkpoornima Communicator in Splunk Search 11-20-2012 0 6	0	6
input through text box hi all, I used below query and i got the table which has the duration and TaskName source="C:\Users\20875\Desktop\... by splunkpoornima Communicator in Splunk Search 11-20-2012 0 1	0	1
Testing and debugging an Inline Field Extraction I'm trying to setup Splunk to understand CloudFront log files. I've setup a field extraction like this: ^(?<DATE>[\... by adamb0mb Explorer in Splunk Search 11-19-2012 0 3	0	3
I need to calculate the number of business days between two dates. Any help or direction on this will be very helpful. I need to calculate the number of business days between two dates. Any help or direction on this will be very helpfu... by yaminims New Member in Splunk Search 11-19-2012 0 1	0	1
Threshold stats count table I want to use stats count with several fields and am running my search every hour I don't want to show any results u... by hartfoml Motivator in Splunk Search 11-19-2012 0 2	0	2
Help with Reporting Need a little assistance with reporting. I am currently indexing multiple anti-virus reports into SPlunk daily and ar... by efelder0 Communicator in Splunk Search 11-19-2012 0 4	0	4
Extract username and domain from field order depends on delimiter We have a Username field which we are extracting via search time rex. \| rex field=_raw "User (?\S+)" The Username ... by solarboyz1 Builder in Splunk Search 11-19-2012 0 8	0	8
How do I measure measuring wKB_PS across a four disk LUN with iostat? I have Netapp LUNS mapped to a Centos server. when I run iostat, I see all the individual disks that are mapped. I ... by belka Path Finder in Splunk Search 11-19-2012 0 3	0	3
Generating the report in .doc format Hi, AFter analyzing the raw log in splunk, we generate excel reports and from that we make reports in .doc format fo... by abhayneilam Contributor in Splunk Search 11-19-2012 0 7	0	7