Splunk Search

Discussions

Thread Info

sendemail. email averrable

on the output I get the result with users. the username is similar to the name of the mail. how do i call the usernam...

by Communicator in

Create tag for rex field

Hey All, I get no results found for a tag that looks for fields created by a rex.So...sourcetype=DataServices | rex...

by Path Finder in

How to call/hit external URL from Splunk search and read JSON result obtained in splunk

Hi, How to call a External URL from Splunk Search and read the JSON results obtained from it in Splunk. Basically...

by Builder in

Duration between multiple events

Hello Splunk Community, Can anyone help me build a query based on the below; I have a batch job that usually sta...

by Path Finder in

Convert duration in hours to duration in minutes

Hello Splunk Community, Can anyone help me build a query based on the below; I have built a query which calc...

by Path Finder in

Props Configuration with for Text File with First 2 lines contain header info

Hello, I have an issue writing props configuration for text source file which contains first 2 line (including ...

by Motivator in

how to write a request

| inputlookup file1.csv field1field21a2b3c it is necessary so 123abc help! Thanks

by Communicator in

Grouping HTTP GET requests based on first directory

Very new to splunk here. I would like to group each http request to each directory based on their directory, and prod...

by Explorer in

Compare 2 fields with differents queries

I have the follow situation: queryA returns correlationsAAABBBCCCDDD queryB returns correlations AAACCCEEEExpect ...

by Explorer in

Distinct counts on only those fields that begin with a particular string

Hi I'm searching on an internet usage index for events that contain a particular word somewhere in the domain. For ...

by Explorer in

Does the lookup command have a limit

I am currently using a lookup to find matching IDs in my data. The lookup table is like 400k rows and if I use inputl...

by Path Finder in

Extract Error Message String

I am trying to extract the messages of a commonly used error log: Creating review recommendations service case ...

by Explorer in

Help with regex needed

Hello, I am trying to extract the system IDs from single event into the multiple events, I mean that each SID is in...

by Builder in

Analysing combinations

Hi, I'd really appreciate some advice on this. I have a data set looking at users and the apps they have access to....

by Explorer in

Production issue - Memoizer expired - Any ideas?

Hi - I have a production outage...

by Influencer in

Change color of Column Chart bars based on average of last week

Dear Splunk Community, I have the following statistics table and corresponding column chart that show the amount of...

by Communicator in

Search for status of health status of splunkd

Hi everyone, I'm looking for a search, that shows me when the health status of splunkd is changing from green to ...

by Path Finder in

If else conditional search returning table

Hello, i need to configure a search using If else condition but the search outputs in a table format. Can someone p...

by Builder in

Filtering a timechart on time to remove unwanted data

Hello, I'm building some dashboard statistics from telecom data. I have a data source as follows : _time Off...

by Explorer in

multi field extraction form the logs

Hi Experts, Am new to splunk.. I need to extract the fields which is in MSGTXT which are highlighted. Only when M...

by Explorer in

Display days passed between current time and most recent activation - User Role Auditing

The answer to this probably stupid simple. Banging my head on this. Help and patience please. ...

by Explorer in

How to extract value of a required field using regx?

msg: INFO | 2021-10-14 10:38 PM | Message consumed: {"InputAmountToCredit":"22.67","CurrencyCode":"AUD","Buid":"140...

by Explorer in

rex 4 fields

Hi How can extract these fields: field1=Versionfield2=Authorfield3=Datefield4=IssueNo Here is the log: 23...

by Motivator in

request comparison

Hello. How can two files be compared for identity ? file1.csv: usernameid_userJonh123 file2.csv username...

by Communicator in

whois in search. help

How to use "whois" .apps "network tools" doesn't work. "lookup whois" does not work. are there other valid applicatio...

by Communicator in

Get Updates on the Splunk Community!

Splunk Search

Discussions

sendemail. email averrable

Create tag for rex field

How to call/hit external URL from Splunk search and read JSON result obtained in splunk

Duration between multiple events

Convert duration in hours to duration in minutes

Props Configuration with for Text File with First 2 lines contain header info

how to write a request

Grouping HTTP GET requests based on first directory

Compare 2 fields with differents queries

Distinct counts on only those fields that begin with a particular string

Does the lookup command have a limit

Extract Error Message String

Help with regex needed

Analysing combinations

Production issue - Memoizer expired - Any ideas?

Change color of Column Chart bars based on average of last week

Search for status of health status of splunkd

If else conditional search returning table

Filtering a timechart on time to remove unwanted data

multi field extraction form the logs

Display days passed between current time and most recent activation - User Role Auditing

How to extract value of a required field using regx?

rex 4 fields

request comparison

whois in search. help

Splunk Decoded: Service Maps vs Service Analyzer Tree View vs Flow Maps

What’s New in Splunk Observability – September 2025

Fun with Regular Expression - multiples of nine

In Splunk studio, is it possible to populate a tex...

Help me with splunk query to monitor CPU and Memor...

How can i export a list of all services in APM

Splunk Answers Content Calendar May 2025!

MLTKC how should i check jupyter notebook func in ...

Splunk Search

Are you a member of the Splunk Community?

Discussions