Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Splunk Search
Splunk Search
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
- Find Answers
- :
- Using Splunk
- :
- Splunk Search
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | search * | eval userAgentType=if(searchmatch("cs_User_Agent_=*MSIE*"), "Internet Explorer", "Other") | search userAge... by chca Path Finder in Splunk Search 08-05-2011 0 2 | 0 | 2 | |
| | Hi, Sorry if this has been asked before but I could do with a quick straightforward answer for this one. We have a... by fraserhardy New Member in Splunk Search 08-05-2011 0 4 | 0 | 4 | |
| | How to clean Searches and reports cache? I just rename stanza from [Report TEST] to [Report All Users] in my savedse... by pero1234 Path Finder in Splunk Search 08-05-2011 0 2 | 0 | 2 | |
| | Hi~there Does anyone know if real-time search on dashboard can display last accumulated results such as last -1h whe... by hjwang Contributor in Splunk Search 08-05-2011 0 2 | 0 | 2 | |
| | Assuming my URL_Query field contains the following data: cdata=153&orgid=0012 orgid=3924&cdata=129 cdata=153&orgid=3... by chca Path Finder in Splunk Search 08-04-2011 0 2 | 0 | 2 | |
| | I'm collecting a disk space log. I want to extract fields. ==> Filesystem , Type , Size , Used , Avail , UsePct , Mou... by lanying Explorer in Splunk Search 08-03-2011 0 1 | 0 | 1 | |
| | Hi Splunkers, So I'm getting started with multikv extractions, and I've come across this issue. I'm attempting to g... by rturk Builder in Splunk Search 08-03-2011 0 2 | 0 | 2 | |
| | We would like to be able to send splunk events from our integration platform, but the existing logging infrastructure... by Lowell Super Champion in Splunk Search 08-03-2011 0 3 | 0 | 3 | |
| | I noticed the following item in 4.1.4' change logs Consistent redirect to login page when running searches in Splunk... by dianbo_1 Path Finder in Splunk Search 08-03-2011 2 2 | 2 | 2 | |
| | I'm trying to set up a pie chart displaying the average response time to a particular server. The pie chart should ha... by acdevlin Communicator in Splunk Search 08-03-2011 1 2 | 1 | 2 | |
| | I have a server onto which I installed Spunk last night. Just prior to the installation I installed flash 10.3, but I... by EUSTobias Engager in Splunk Search 08-03-2011 1 1 | 1 | 1 | |
| | Hi. I have a query that returns a number count based on the occurence of 2 keywords: sourcetype=hwa_other source=/va... by nishil New Member in Splunk Search 08-03-2011 0 1 | 0 | 1 | |
| | I have a set of events which are of the type: Type=httpPreReply Guid=b6d4d009-4643-4ff2-8fad-e20868ce3a17 Datetime=07... by sdevadas Path Finder in Splunk Search 08-02-2011 0 1 | 0 | 1 | |
 | index=MyApp earliest="@d-1" latest="@d+11h" | stats count That query provides an event count of all events that occ... by DTERM Contributor in Splunk Search 08-02-2011 2 2 | 2 | 2 | |
| | Hi Everyone, I'm trying to craft a timechart that shows the top "hits per source" and then only display the top sour... by dwengi Engager in Splunk Search 08-02-2011 0 2 | 0 | 2 | |
 | I want to change the source filename for my data to remove the timestamp. from mypath\to\my\folder\userentrypoint17_... by mataharry Communicator in Splunk Search 08-02-2011 1 2 | 1 | 2 | |
| | I am using the following to extract two fields at search time, extract_domain and extract_ip source="dns2.log" | r... by maxdessureault Engager in Splunk Search 08-02-2011 0 2 | 0 | 2 | |
| | How do I set majorUnit to 0.5 on Y-axis? I know I have the correct command as this is working: option name="charti... by JYTTEJ Communicator in Splunk Search 08-02-2011 0 2 | 0 | 2 | |
| | Hi! I'm pretty new to splunk and i'm trying to figure out how to: 1. Search for 2 different strings (dealswidget OR ... by nishil New Member in Splunk Search 08-02-2011 0 4 | 0 | 4 | |
| | Hi , I am trying to come up with a rex expression to fetch the millisecond value appearing in the log events display... by saurabhCox New Member in Splunk Search 08-02-2011 0 2 | 0 | 2 | |
| | Hello, I'm trying to extract each of the 16 values following the "Latency:" string into 16 separate fields and then ... by mxsullivan New Member in Splunk Search 08-01-2011 0 1 | 0 | 1 | |
| | I have search and post-process that is returning a data table. The post process adds column totals to the table. Th... by kjcorbin Explorer in Splunk Search 08-01-2011 2 3 | 2 | 3 | |
| | I have a query that creates a transaction and then calculates the concurrency for the transactions based on the durat... by jeffa Path Finder in Splunk Search 08-01-2011 1 3 | 1 | 3 | |
 | I would like to display a per-second event count for a rolling time window, say 5 minutes. I have tried the following... by hexx Splunk Employee  in Splunk Search 08-01-2011 3 1 | 3 | 1 | |
| | I am trying to get the total number of web server pages that match a given F5 load balancer iRule condition. Specifi... by approachct Path Finder in Splunk Search 08-01-2011 1 3 | 1 | 3 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #search-help Slack channel
Get Expert Help at Community Office Hours
Join the #search-help Slack channel
Become An Expert
Top Labels
-
administration
3 -
alert action
3 -
alert condition
2 -
Analytics Workspace
2 -
authentication
1 -
chart
946 -
Classic dashboard
1 -
configuration
2 -
correlation search
1 -
count
1,006 -
Dashboard Studio
3 -
data
3 -
data model
1 -
development
6 -
distributed search
1 -
drilldown
1 -
email
1 -
eval
2,615 -
field extraction
2,022 -
fields
2,064 -
host
1 -
index
4 -
indexer
2 -
inputs.conf
1 -
intermediate forwarder
1 -
introduction
5 -
join
1,060 -
JSON
2 -
Linux
2 -
login
1 -
lookup
1,566 -
metadata
310 -
monitoring console
2 -
other
182 -
panel
2 -
PDF
1 -
Python
1 -
regex
1,499 -
report acceleration
2 -
rex
1,250 -
SAML
1 -
saved search
5 -
scheduled search
4 -
scripted input
1 -
search
2 -
search head
3 -
search job inspector
683 -
search peer
1 -
simple XML
1 -
source
1 -
sourcetype
4 -
Splunk Web Framework
1 -
splunk-assist
1 -
splunkd
1 -
stats
3,565 -
subsearch
1,730 -
summary indexing
4 -
table
1,754 -
time
1 -
timechart
1,158 -
transaction
453 -
transforms.conf
1 -
troubleshooting
8 -
tstats
569 -
universal forwarder
5 -
using Splunk Cloud
2 -
using Splunk Enterprise
13 -
Windows
3
- « Previous
- Next »
Get Updates on the Splunk Community!
[Puzzles] Solve, Learn, Repeat: Matching cron expressions
This puzzle (first published here) is based on matching timestamps to cron expressions.All the timestamps ...
Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas
Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas
Cisco Live 2026 is almost here, and this ...
Data Management Digest – May 2026
Welcome to the May 2026 edition of Data Management Digest!
As your trusted partner in data innovation, the ...
