Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Splunk Search
Splunk Search
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Using Splunk
- :
- Splunk Search
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | I would like to calculate the total for the following sample. These are numbers but have comma. 122 3,871 17,896 33... by rksubbu Explorer in Splunk Search 12-20-2011 2 6 | 2 | 6 | |
| | My logs contain a field "A", i need to calculate a new field "B" based on the SLOT, when A=a1 OR A=a2, THEN B=avg of... by xiaoyuew Path Finder in Splunk Search 12-20-2011 0 2 | 0 | 2 | |
| | Hello, I'm having an issue with a regex i did. I want to create a new column with my regex where there's 2 values po... by rbw78 Communicator in Splunk Search 12-20-2011 0 3 | 0 | 3 | |
| | Hi there! I'm looking at this previous question here: [http://splunk-base.splunk.com/answers/2602/can-splunk-filter... by gnovak Builder in Splunk Search 12-20-2011 0 2 | 0 | 2 | |
 | my field extractions are not working tranforms.conf file is [tms_iisfields] FIELDS = "date","time","s-ip","cs-metho... by kml_uvce Builder in Splunk Search 12-20-2011 0 3 | 0 | 3 | |
| | i have yet to get lookups to work correctly in an app. The file is in the right place /opt/splunk/etc/apps/myapp... by robgreen Path Finder in Splunk Search 12-20-2011 0 3 | 0 | 3 | |
 | I am trying to extract the fields from an Oracle 10g Audit trail. Below is a sample of the raw log : Tue Feb 15 10:1... by JSapienza Contributor in Splunk Search 12-20-2011 0 6 | 0 | 6 | |
| | Hello, I have a source that contains events like these: "MONEY LEFT: 1.000,00" "MONEY LEFT: 000,00" "MONEY LEFT: 350... by cafissimo Communicator in Splunk Search 12-20-2011 0 3 | 0 | 3 | |
| | Splunk's scrub command scrub data in queries/report. What are the steps to permanently remove certain logs from Splun... by qas Engager in Splunk Search 12-19-2011 3 3 | 3 | 3 | |
 | I'm getting this error message twice every 30 sec. 12-19-2011 12:15:27.539 -0500 ERROR AuthenticationManagerLDAP - Co... by wbfoxii Communicator in Splunk Search 12-19-2011 1 3 | 1 | 3 | |
| | I am trying to set my host name equal to part of the file name with a regex (regular expression) and I am a regex nov... by ianathompson Explorer in Splunk Search 12-19-2011 0 1 | 0 | 1 | |
| | Hello, I have data in the form of a date,server,events triplet. The fields are correctly extracted and assigned. da... by wsw70 Communicator in Splunk Search 12-19-2011 0 2 | 0 | 2 | |
| | Hi I have an index named pci and the location of this is /windows/pci/db i want move it(existing and new) in another ... by kml_uvce Builder in Splunk Search 12-19-2011 0 1 | 0 | 1 | |
| | Hi I have a problem with the field extraction. I am trying to extract out and name a field containing the data "--O-... by the3nd4u New Member in Splunk Search 12-18-2011 0 1 | 0 | 1 | |
| | We have couple of credit card data in splunk and we need to remove those from the splunk. I am using the below query ... by npandith Explorer in Splunk Search 12-17-2011 0 1 | 0 | 1 | |
| | I am attempting to Index a file once from my Splunk server. The file contains a copy of syslog data. The lines look ... by stefanlasiewski Contributor in Splunk Search 12-17-2011 0 6 | 0 | 6 | |
 | I'm trying to integrate information from this link http://splunk-base.splunk.com/answers/13482/plotting-trendlines-in... by DTERM Contributor in Splunk Search 12-16-2011 0 3 | 0 | 3 | |
| | Using Splunk 4.2.3 build 105575 I have a search which I use to compare the current status of a system (1 hr window) ... by lokival Explorer in Splunk Search 12-16-2011 3 6 | 3 | 6 | |
| | Hello All, I recently deployed a new dashboard to look at response times and the count of the requests. We found that... by ericrobinson Path Finder in Splunk Search 12-16-2011 0 2 | 0 | 2 | |
| | Hi search command "bucket" time sorting? My search commmand * | bucket _time span=1d | eval time=strftime(_time,"%... by khyoung7410 Communicator in Splunk Search 12-15-2011 0 1 | 0 | 1 | |
| | Hello and thanks in advance for reading this question. I'm currently trying to generate a simple report of unique ho... by jchensor Communicator in Splunk Search 12-15-2011 0 4 | 0 | 4 | |
| | I have a set of data from a friend who is doing some statistical work and he want me to use splunk to give meaning to... by e82than Communicator in Splunk Search 12-15-2011 0 14 | 0 | 14 | |
| | Hi all - are there any intellisense plug-ins that enhance the existing Splunk search bar? A few examples of enhanceme... by mwagstaff Explorer in Splunk Search 12-15-2011 0 1 | 0 | 1 | |
| | I am new to regex - so...... I want to filter out all events that contain the word sendmail My messages look like t... by mcbradford Contributor in Splunk Search 12-14-2011 0 1 | 0 | 1 | |
| | I have the following saved search which emails result daily to show indexing volume: index=_internal host=prodlog tod... by steveirogers Communicator in Splunk Search 12-14-2011 4 6 | 4 | 6 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #search-help Slack channel
Get Expert Help at Community Office Hours
Join the #search-help Slack channel
Become An Expert
Top Labels
-
administration
3 -
alert action
3 -
alert condition
2 -
Analytics Workspace
2 -
authentication
1 -
chart
944 -
Classic dashboard
1 -
configuration
2 -
correlation search
1 -
count
1,003 -
Dashboard Studio
3 -
data
3 -
data model
1 -
development
6 -
distributed search
1 -
drilldown
1 -
email
1 -
eval
2,609 -
field extraction
2,017 -
fields
2,061 -
host
1 -
index
4 -
indexer
2 -
inputs.conf
1 -
intermediate forwarder
1 -
introduction
5 -
join
1,058 -
JSON
2 -
Linux
2 -
login
1 -
lookup
1,565 -
metadata
307 -
monitoring console
2 -
other
153 -
panel
2 -
PDF
1 -
Python
1 -
regex
1,498 -
report acceleration
2 -
rex
1,246 -
SAML
1 -
saved search
5 -
scheduled search
4 -
scripted input
1 -
search
2 -
search head
3 -
search job inspector
681 -
search peer
1 -
simple XML
1 -
source
1 -
sourcetype
4 -
Splunk Web Framework
1 -
splunk-assist
1 -
splunkd
1 -
stats
3,559 -
subsearch
1,721 -
summary indexing
4 -
table
1,750 -
time
1 -
timechart
1,156 -
transaction
451 -
transforms.conf
1 -
troubleshooting
8 -
tstats
566 -
universal forwarder
5 -
using Splunk Cloud
2 -
using Splunk Enterprise
13 -
Windows
3
- « Previous
- Next »
Get Updates on the Splunk Community!
AI for AppInspect
We’re excited to announce two new updates to AppInspect designed to save you time and make the app approval ...
App Platform's 2025 Year in Review: A Year of Innovation, Growth, and Community
As we step into 2026, it’s the perfect moment to reflect on what an extraordinary year 2025 was for the Splunk ...
Operationalizing Entity Risk Score with Enterprise Security 8.3+
Overview
Enterprise Security 8.3 introduces a powerful new feature called “Entity Risk Scoring” (ERS) for ...
