Splunk Search

Community Activity

Streamstats command issue with splunk version 8.2.4 We are seeing strange behavior after updating Splunk from 8.0.4.1 to 8.2.4.The major issue is with all queries that u... by Amirahussein Path Finder in Splunk Search 03-31-2022 0 0	0	0
What are the types of sample logs dump similar to tutorialsdata.zip for exploring splunk search options? Hi, I am looking for various types of sample logs dump similar to tutorialsdata.zip for exploring splunk search opti... by amgsplunk Explorer in Splunk Search 03-31-2022 1 2	1	2
How to extract string from lookup field? Hi, I need to extract a string from a field in a lookup. need to extract between <query> and <query> and the field... by nathanluke86 Communicator in Splunk Search 03-31-2022 0 1	0	1
Why is Lookup definition in transforms.conf not returning results? I have created a lookup in the LOOKUP folder placed in local. Post that I defined the lookup in transforms.conf. This... by _av Loves-to-Learn in Splunk Search 03-31-2022 0 2	0	2
Why is the percentage of non high priority searches skipped (50%) is high? The percentage of non high priority searches skipped (50%) over the last 24 hours is very high and exceeded the red t... by dejiosemeke New Member in Splunk Search 03-31-2022 0 11	0	11
How to design a data catalogue that captures all source types that are being ingested? I'm looking at designing a Splunk data catalogue that captures all source types (and metadata) that are currently bei... by tirelana Engager in Splunk Search 03-30-2022 0 3	0	3
How to sum two rows from a table? I have the following table that I would like to summarize as total logins and total token creationsby creating a new ... by na206b Explorer in Splunk Search 03-30-2022 0 4	0	4
How to get top 20 results from each category based on data size? I've below search: \| tstats summariesonly=true count, sum(All_Traffic.bytes) as total_bytes, sum(All_Traffic.packet... by VatsalJagani SplunkTrust in Splunk Search 03-30-2022 0 2	0	2
How to get the last hour of events but also remove any data after last hour Deleted by michael_wong Path Finder in Splunk Search 03-30-2022 0 3	0	3
Scom: How to remove resolved events that are monitored using dedup? We are ingesting scom events When an alert is triggered it is assigned an id (the earliest event pictured) and we hav... by nathanluke86 Communicator in Splunk Search 03-30-2022 0 5	0	5
How to add background cover for Dashboard Panel Title Colors? Hello, I am trying to add a background cover for the panels within a dashboard. I have attached a photo of what w... by elijahputz Explorer in Splunk Search 03-30-2022 0 11	0	11
Why is it showing "splunk command not found"? help by SANMEHTP Observer in Splunk Search 03-30-2022 0 4	0	4
Can I get data out Splunk Cloud Platform? Can I get data in Splunk Cloud Platform?and how can i get it (REST API, library in python,...)Any help is appreciated by tienduyf9 Engager in Splunk Search 03-30-2022 0 6	0	6
How to get the correct rex to extract fields from string? Hi, I have below string and I am trying to get StartTime, EndTime and Count to be displayed in the dashboard. "Non-Ma... by j2menanda Explorer in Splunk Search 03-30-2022 0 8	0	8
How to correlate the results of two searches? Hi all, We have two reverse proxies, one front, one back. They both log http requests and responses to the same index... by sebasti1aan New Member in Splunk Search 03-30-2022 0 2	0	2
How to use a lookup table field to discard events? We have a list of Ips in a lookup table and we want to search events that doesn't match with them. The lookup definit... by JoserraRodrigo New Member in Splunk Search 03-30-2022 0 1	0	1
How to create API to send jobs to splunk app? by ujwalacs20 Engager in Splunk Search 03-30-2022 0 1	0	1
How to get data from Splunk Cloud? Can I use Splunk REST API to get data from Splunk Cloud?Can someone give me some examples? I have read some documents... by tienduyf9 Engager in Splunk Search 03-30-2022 0 1	0	1
How to check for list of values and evaluate true/false? I am new to splunk and i cannot figure out how to check the Values and evaluate True/False.Below is the query that i ... by h3xa Explorer in Splunk Search 03-30-2022 0 5	0	5
How to get data from Monitoring Console into Search head dashboard? Hello, We have a monitoring console that works great. I am able to connect directly to the server containing the cons... by wainwrid Engager in Splunk Search 03-30-2022 0 0	0	0
How to calculate EPS over a month? Hi I need to calculate the EPS averaged over a month, any ideas? by Rhidian Path Finder in Splunk Search 03-30-2022 0 2	0	2
How to capture a string? 03 Mar 2022 10:08:18,188 GMT ERROR [dbdiNotificationService,ServiceManagement] {} - Caught Runtime exception at servi... by bhaskar5428 Explorer in Splunk Search 03-30-2022 0 3	0	3
How to get the count of elapsed time? Hello, I am trying to do the following: I need to add all the times in ELAPSED and give the result in the Total Time... by Choupette72 Engager in Splunk Search 03-30-2022 0 2	0	2
How to create a line chart visualization? index=* namespace="dk1017-j" sourcetype="kube:container:kafka-clickhouse-snapshot-writer" message="*Snapshot event pu... by bhaskar5428 Explorer in Splunk Search 03-30-2022 0 3	0	3
How to blacklist lookup for syslogs? I have a blacklist.csv file that looks like the following, IPdomain1.0.136.29# 2018-11-12, node-1lp.pool-1-0.dynami... by splunkboob Explorer in Splunk Search 03-30-2022 0 1	0	1