Splunk Search

Community Activity

Can someone please give an example on how this is done after its successfully configured? http://docs.splunk.com/Documentation/Splunk/4.2.4/User/RealtimeSearch#Real-time_backfill Realtime backfill, how is t... by Dark_Ichigo Builder in Splunk Search 06-01-2012 0 1	0	1
Sorting X axis by month I have the following search which displays amounts of records by month (X-axis). index="billing" suspededrecords \|... by mcwomble Path Finder in Splunk Search 05-31-2012 2 4	2	4
How to snap span with bucket So I want use bucket to group my data by weeks that start on Mondays if I change my query to use earliest=-1w@w1 late... by aarcro Explorer in Splunk Search 05-31-2012 0 4	0	4
Looking to filter out C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Rtvscan events Once a week when Symantec runs a full scan our quota gets blown out of the water. Is there a way to filter these eve... by andrewsmiley Engager in Splunk Search 05-31-2012 1 2	1	2
Can I chain together two searches in Splunk Web? Is it possible to chain together two searches? Basically, need to grab the IP address from my webserver logs (if it ... by gehogan3 Explorer in Splunk Search 05-31-2012 0 1	0	1
round funtion usage to round the decimal dgits after the precision Hi , I have been using the stats avg(duration) as Avg_Duration in my query.But while displayin the Avg_Duration i am... by rakesh_498115 Motivator in Splunk Search 05-31-2012 0 5	0	5
Field extraction on all inputs Is it possible to apply a search-time field extraction to all inputs? Our log files (across multiple hosts, sources ... by Jordan_Brough Path Finder in Splunk Search 05-30-2012 0 3	0	3
Multiple key value pair extraction I have multiple key value pairs in a line like so: summary=" Policy Rule modified" summary=" Policy Rule number 2 mod... by timbCFCA Path Finder in Splunk Search 05-30-2012 1 3	1	3
How do I search for the top 10 users top 10 URL hits per month? I'm fairly new to Splunk search strings so hopefully someone can help. I'm trying to create a three column search: ... by neilsussman Explorer in Splunk Search 05-30-2012 2 3	2	3
Field Extraction in Message field of Windows Event Log Hello, I have an application sending logs to the windows event log with a lognamename of ErrorLogs. The error log l... by dturner83 Path Finder in Splunk Search 05-30-2012 1 4	1	4
why a transaction is still formed when it does not satisfy the "startswith" or "endswith" criteria I constructed transactions with "startswith" and "endswith" and I am trying to identify those incomplete transactions... by myli12 Path Finder in Splunk Search 05-30-2012 1 3	1	3
can I aggregate two queries I Have Two sourcetypes defined . i need to write a query integrating the two sourcetypes and should get a single resu... by rakesh_498115 Motivator in Splunk Search 05-30-2012 0 1	0	1
Display response times for two different webservices in the same timechart Hi all! I have two searches that I want to display in the same search and pipe them out in a time-chart Both search... by Norling Explorer in Splunk Search 05-30-2012 0 2	0	2
How to troubleshoot lookup tables I have a lookup table that contains details about Nessus plugins -- the Nessus ID, Plugin Name, Risk Factor, and a fe... by responsys_cm Builder in Splunk Search 05-30-2012 0 1	0	1
Plot Response Time Events from Web Log Hi there, This should be a pretty simple question. I have looked around for a while. We have a web log we are trying... by zloc Engager in Splunk Search 05-29-2012 0 2	0	2
Count unique IP's in 1 minute span over 1 hour or more. This may be confusing, so I'll try to explain it as best as I can. I've got a search that looks for servers that get ... by jevenson Path Finder in Splunk Search 05-29-2012 0 1	0	1
Finding the _time difference between two subsearches I'm unable to get this search to output anything except the _time of the first search: \|set diff [ search index="col... by nelsonb Explorer in Splunk Search 05-29-2012 0 5	0	5
chart drilldown to another chart in popup window I have a chart that I want to drilldown on and display another graph based on the drilldown results in a popup window... by jedatt01 Builder in Splunk Search 05-29-2012 1 3	1	3
field extraction help Hi, I'm a relative newbie (power noob?) who is having issues with extracting fields from a multi-line event. A sampl... by a212830 Champion in Splunk Search 05-29-2012 0 4	0	4
Eval Command? I am attempting to look for the top 10 offenders of a specific event type, and get their IP address. That I can do no... by tmarlette Motivator in Splunk Search 05-29-2012 0 4	0	4
Add Data to Splunk What is the difference between Choose a Data Type and Choose a Data Source. I want to monitor only directories that ... by jangid Builder in Splunk Search 05-29-2012 0 3	0	3
index files in same directory Hi all, I'm a newbie to Splunk. I tried to index all apache log files in the same directory as a single source so th... by stwong Communicator in Splunk Search 05-28-2012 0 3	0	3
Return daily unique field Hi guys, As I understand, dedup command will filter the complete set of results and remove any duplicate fields. Wh... by zucler Explorer in Splunk Search 05-28-2012 0 3	0	3
Serching Development Log Files So I am brand new to Splunk. I just finished setting up a Ubuntu server for indexing and have got all my forwarders w... by sjjohns New Member in Splunk Search 05-28-2012 0 1	0	1
Search key with variable I have events like this: Desc_1=eth1 Desc_50=vlan.10 Desc_123=vlan.20 .... the key is in Descr_* format and I want t... by hello_world15 Engager in Splunk Search 05-28-2012 0 3	0	3

Get Updates on the Splunk Community!

Data Management Digest – December 2025

Welcome to the December edition of Data Management Digest! As we continue our journey of data innovation, the ...

Index This | What is broken 80% of the time by February?

December 2025 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious! We’re back with this ...

Unlock Faster Time-to-Value on Edge and Ingest Processor with New SPL2 Pipeline ...

Hello Splunk Community, We're thrilled to share an exciting update that will help you manage your data more ...

Splunk Search

Can someone please give an example on how this is done after its successfully configured?

Sorting X axis by month

How to snap span with bucket

Looking to filter out C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\Rtvscan events

Can I chain together two searches in Splunk Web?

round funtion usage to round the decimal dgits after the precision

Field extraction on all inputs

Multiple key value pair extraction

How do I search for the top 10 users top 10 URL hits per month?

Field Extraction in Message field of Windows Event Log

why a transaction is still formed when it does not satisfy the "startswith" or "endswith" criteria

can I aggregate two queries

Display response times for two different webservices in the same timechart

How to troubleshoot lookup tables

Plot Response Time Events from Web Log

Count unique IP's in 1 minute span over 1 hour or more.

Finding the _time difference between two subsearches

chart drilldown to another chart in popup window

field extraction help

Eval Command?

Add Data to Splunk

index files in same directory

Return daily unique field

Serching Development Log Files

Search key with variable

Data Management Digest – December 2025

Index This | What is broken 80% of the time by February?

Unlock Faster Time-to-Value on Edge and Ingest Processor with New SPL2 Pipeline ...

Using Splunk to Analyze Web Traffic & Machine-Gene...

How can i export a list of all services in APM

Splunk Answers Content Calendar May 2025!

MLTKC how should i check jupyter notebook func in ...

ITSI thresholds: adaptive vs static

Splunk Search

Join the Conversation