Splunk Search

Community Activity

What are some best practices to import data from an Oracle database table (not database logs)? I have a very large Oracle database table that is being used as a log sink for an application. There is high transact... by scottrudy Engager in Splunk Search 07-25-2022 0 1	0	1
How to Capture optional fields? rex command im using: (?:\w+\s\:\s)(?<command>[^\;]+)?\;\s(?<Datainput>[^\s]+)\s\;\s(?<Extra>[^\s]+) Data 1) command... by JohnnyTsunami New Member in Splunk Search 07-25-2022 0 1	0	1
Why is mvexpand not working on lookup? Hello, I am trying to create dashboard input based on lookup table. I have simple lookup with monitor name and list o... by GersonGarcia Path Finder in Splunk Search 07-25-2022 0 5	0	5
Is there any controls to limit the size of a user search? Is there any controls to limit the size of a user search? The use case is Splunk Cloud and limiting a search, if it d... by rbal_splunk Splunk Employee in Splunk Search 07-25-2022 0 1	0	1
How to trigger an alert if Event B doesn't occur within 30 minutes of Event A? Hi all, I'm looking to trigger an alert if our DHCP server loses connection with its partner DHCP for more than 30 mi... by uksteve Engager in Splunk Search 07-25-2022 0 3	0	3
Help with field extraction with complex events Hello, I have some issues with the field extraction for the following event (one sample event given below). Any recom... by SplunkDash Motivator in Splunk Search 07-25-2022 0 3	0	3
What is the difference between lookup, input lookup and what a definition lookup is for ? Hi, As asked in the subject I trying to figure out the difference between lookup input lookup because I don't thi... by darphboubou Explorer in Splunk Search 07-25-2022 0 8	0	8
When testing federated search, no fields show up- Is this a bug? We are testing federated search. when on the provider (environment A), the fields are nicely extracted. When on the ... by wmuselle Path Finder in Splunk Search 07-25-2022 0 2	0	2
Why can't splunk add-on for Amazon Web services proxy and no_proxy? Trying to collect my AWS data using on-prem splunk instance. I need to go via a proxy to access anything on the inter... by uksysadmins New Member in Splunk Search 07-25-2022 0 2	0	2
Document Flow tracking over multiple sources. Linking unique field Beginner user here.PART 1Wanting to track documents over multiple sources to ensure they reach their destinationSourc... by MorphiusX Engager in Splunk Search 07-24-2022 0 3	0	3
How to create an Alert for an increase in IIs requests compared to a previous date Hi, I’m looking at creating Alert for an increase in IIs requests compared to a previous date based on a percentage. ... by joe06031990 Communicator in Splunk Search 07-24-2022 0 2	0	2
How to update table? Hi, Is it possible to Make a table like in the example below, that would refresh every 10 minutes and update the stat... by Edwin1471 Path Finder in Splunk Search 07-23-2022 0 1	0	1
How to add business value other than alert? Hi team, We are logging the File copy logs, Application logs into Splunk and using Splunk alerting for file not copi... by rkishoreqa Communicator in Splunk Search 07-23-2022 0 0	0	0
Help lookup command Hello everyoneWith some embarrassment I confess that I do not know how to use the lookup command and although I have ... by splunkcol Builder in Splunk Search 07-22-2022 0 1	0	1
How to get this eval statement to isolate the search to just two values? Working on a search where there's a field (Office Location) with about 5 different values that are stored in a lookup... by msage Path Finder in Splunk Search 07-22-2022 1 3	1	3
How to ingest Storage array data from Netapp into Splunk cloud How to collect data from Netapp into splunkcan someone suggest by sekhar463 Path Finder in Splunk Search 07-22-2022 0 3	0	3
How to set up Splunk Search Queue monitoring We would like to track our Splunk Enterprise Cluster performance to keep an eye on whether we have sufficient resourc... by SarahHartt New Member in Splunk Search 07-22-2022 0 0	0	0
How to Show how many users have access to an App? Hi all, I'm trying to create a search that gives me back a table of all Apps and the amount of users that have access... by SevenDos Explorer in Splunk Search 07-22-2022 0 1	0	1
How to make Graphic display of a delta between two values Hello community, I apologize in advance, I don't speak English so my writing won't be perfect. I have a problem with ... by Rajaion Path Finder in Splunk Search 07-22-2022 0 5	0	5
How to separate name in stats for local discovered accounts? Any advice on this search? Although it simply produces what I need, it also lumps the system name with it. index=ma... by Minasdad Path Finder in Splunk Search 07-22-2022 0 2	0	2
How to get the latest host value which is sending logs by comparing 2 hosts? Hi , I have search like below where the logs are coming from the fig1,fig4,fig5,fig6 indexes from either of the 2 hos... by raj_mpl Path Finder in Splunk Search 07-22-2022 0 6	0	6
How to connect driver influxdb to Splunk db? Hi I want to connect influxdb via splunk db, in connection type I can't find influx db! is there any jdbc or odbc dri... by indeed_2000 Motivator in Splunk Search 07-22-2022 0 16	0	16
Does csv file accepts * symbol for lookup? I have apis which has params in between and trying to match the api from csv but it doesnt show when using lookup.eg... by mikeyty07 Communicator in Splunk Search 07-21-2022 0 1	0	1
How to query the deployment server to get the serverclasses for a hostname? We have a chef recipe, that people are using and loving. Now, they want the ability to find out their serverclasses ... by a212830 Champion in Splunk Search 07-21-2022 0 10	0	10
How to get forwarded data into Splunk Enterprise? Hello Members, I have a basic question - I am not sure how to get data into splunk, into a custom index, use a source... by eholz1 Builder in Splunk Search 07-21-2022 0 7	0	7