Splunk Search

Community Activity

earliest and latest value from a chart Hello community,I am searching since few days a solution to display the earliest and latest value from a chart into a... by nSphere New Member in Splunk Search 10-14-2021 0 1	0	1
Account status -> bypassed, is it enabled? Hi,We have status in one log type, where we would like to track if account is in state: bypassedExample:2021-13-10 us... by jbanAtSplunk Communicator in Splunk Search 10-14-2021 0 2	0	2
Find events that not occurred daily by servername HiHow can I find events that not occurred daily? Here is the scenario I have two field on my logfile <servername> <CL... by indeed_2000 Motivator in Splunk Search 10-14-2021 0 3	0	3
rex for extract codes hiwhat is the rex for extract all brackets contain this pattern[AB_123] [ZXY_987]1-check all brackets if start with A... by indeed_2000 Motivator in Splunk Search 10-14-2021 0 1	0	1
Splunk query to find amount of data purged based on retention We know the amount of data ingested daily from the Splunk internal logs and the License dashboard, but we're trying t... by nmohammed Builder in Splunk Search 10-14-2021 0 3	0	3
Comparing IP Addresses for differences Hi All,I'm trying to create a search, to potentially be made into a monitoring rule later on.What I am trying to achi... by swright_rl Explorer in Splunk Search 10-14-2021 0 0	0	0
Splunk DB Connect 3.6 Duplicate, Miss Data when sync a larger table around 1000 TPS Hi,I am using splunk DB connect 2.1.4 to get data from A table in Oracle database, (table with around 1000 transactio... by dailv1808 Path Finder in Splunk Search 10-14-2021 0 2	0	2
wrong results for case statement with AND I used this eval statement with AND conditions but I'm only getting result as "Public" even when the condition satisf... by sam1010 Explorer in Splunk Search 10-14-2021 0 3	0	3
Validating if 100 nodes are on boarded in splunk indexes or not. If not ? I have this task were I am successful in getting result sets from nodes that are present in my splunk instance.How ev... by jcorcoran508 Path Finder in Splunk Search 10-13-2021 0 2	0	2
Merge 2 queries base on id Need some assistance from the experts.I have two queries below which I would like to merge on id.Query 1index=aws sou... by shrogers Loves-to-Learn Everything in Splunk Search 10-13-2021 0 3	0	3
Splunk dashboard clickable table output Hi There, I have two queries [Query 1 and Query 2]. what i am planning to achieve is that when user clicks on the s... by vadlamudi Explorer in Splunk Search 10-13-2021 0 4	0	4
How to compare values across rows and columns I have two searches with three fields in common but two field that differ. I'm trying to find returns that don't ha... by maingirl New Member in Splunk Search 10-13-2021 0 2	0	2
Value node is not supposed to have children I'm doing a query to return the text part of the log, but when using it on my dashboard it gives this error message:... by carinahOliveira Explorer in Splunk Search 10-13-2021 0 3	0	3
Field results as table column headings A quick example; Program Name 2.04.0 2.4.3 3.4.24 4.53.5 9 Word 2 1 0 1 Excel ... by Drainy Champion in Splunk Search 10-13-2021 4 2	4	2
Splunk Add-on for Check Point OPSEC LEA I am collecting Firewall logs using OPSEC Lea app. This add on is setup on Heavyforwarder. App is setup correctly a... by Navanitha Path Finder in Splunk Search 10-13-2021 0 2	0	2
Edit a lookup file through the REST API Hello !!I am new to using splunk and would like to know if it is possible to edit a lookup file via Splunk REST API o... by rolyrolex Path Finder in Splunk Search 10-13-2021 1 5	1	5
Sub Search counts I have filed called serial_id which have value ABC2022100845001 I need count with contain 45 in last 5 & 6 th bytes by SUNRAJ Engager in Splunk Search 10-13-2021 0 4	0	4
indexing zip files status HiI want to know when index process is done for zip files through the web ui.I have couple of huge zip files that eve... by indeed_2000 Motivator in Splunk Search 10-13-2021 0 1	0	1
Conditional execution of search Hello All, Can someone help me to build a search query for the below use case ? My use case is to detect if any S3 ... by neerajs_81 Builder in Splunk Search 10-13-2021 0 6	0	6
Time format & Duration Calc Hello Splunk Community, Can anyone help me build a query based on the below;I want to convert a field (Fri Oct 8 23:1... by zoebanning Path Finder in Splunk Search 10-12-2021 0 2	0	2
rex for chkin chkout Hihere is the log:23:50:26.698 app module1: CHKIN: Total:[100000] from table Total:[C000003123456] from PC123:33:39.3... by indeed_2000 Motivator in Splunk Search 10-12-2021 0 5	0	5
splunk search returns multiple events along with matched event Hi,I am making a search similar to this index=abc sourcetype=xyz "searchkeyword"Search result should contain only eve... by mbhima_nike New Member in Splunk Search 10-12-2021 0 3	0	3
How to add extracted fields name as first column value Hello Splunk Gurus,I am trying to generate tabular data for the API requests.Following is the query to extract below ... by techytanzy Explorer in Splunk Search 10-12-2021 0 3	0	3
Percent Change by Host and Error Type We're ingesting Tomcat logs, and looking for items tagged [SEVERE]. I'd like to be able to pull a report of error rat... by Michael_Condon Engager in Splunk Search 10-12-2021 0 2	0	2
Expand XML created variable to search Hi Splunkers, Hopefully I am posting on the correct place, apologies if not!I have the following code/SPL from inside... by vagnet Explorer in Splunk Search 10-12-2021 0 3	0	3