Splunk Search

Ask a Question

Discussions

Thread Info

How can I combine two different chart queries into a single and get count

Hi all, I have two chart queries to get the success count and error count which are working as expected. Now ...

by Communicator in

Field extraction

Hi Splunk team, I would like to receive your dedicated help. I have a string field, the field's structure is name_...

by Explorer in

how to add two values in a field and percentage of them with total

Hi, I have to get % of 2 and 3 values in a same field . Status count True 200 False 50 Error ...

by Path Finder in

How to run an eval command if a statment is true, and keep non true data in the search?

Hi Below is a simple example of what I am trying to do. I am trying to remove the duplicate out of the process na...

by Influencer in

Add manual input through text box into a new column in a table splunk

Hi , I want to add a text box in a dashboard panel and the manual input value of that textbox should be added to a ...

by Explorer in

how to match multiple regex in splunk?

hi all, I have multiple string that are regex, i want to find logs that match with this string.this is a example of...

by Engager in

Matching results with previous results of the same search

Hello guys, does someone know, whether it is possible, to do a matching of search results with previous results of ...

by Path Finder in

Unable to fetch result of hosts which are not having any activity from last 60 mins

Hi Team, I am trying to fetch the count and percentage of hosts having success and failures along with failure perc...

by Path Finder in

Join wont perform accurate count (Event table joined to summary table)

Hi there! I am trying to join an event table (E1) with a summary table (S1). S1 is just a summary table containing ...

by Engager in

Search processing Query

Hi all I am new to Splunk. I want to learn Search Processing. Can anyone give me some example of Search Processing ...

by Observer in

Splunk Report after keyword

I have following events in the log. Although there are lot of rows in it but I interested in these rows only and in e...

by Path Finder in

Typecasting String to Hex/Dec/Oct

I'm looking for a way of typecasting ASCII characters (A,B,C,D,etc) into their decimal or hexadecimal formats. I've...

by New Member in

How to match strings that in a text .file with my logs that indexed?

hi. I have a txt file include many strings, and many logs from my web server that indexed. I want to find the lo...

by Engager in

compare 2 field different source type

Hello guys, I have the VPN log and network log.- In VPN log's it's possible to show IP and USERNAME - In Network lo...

by Loves-to-Learn Lots in

Extract multiple key value pairs from one of the partially auto extracted field

Hi, I am having difficulty in extracting key=value pairs from one of the auto extracted field.The problem is that, ...

by Path Finder in

Convert 210910085155 to yymmddhhmmss or dd/mm/yy hh:mm:ss

Hi Need help converting 210910085155 to yymmddhhmmss index=mydata| eval fields=split(EventMsg,",")| eval file_st...

by New Member in

Webtools app how to make get requests

Hello @jkat54 , @richgalloway I am new to the add-on and am not able to figure out how to make API calls...

by Explorer in

Backslash character on subsearch result

Hi, i am currently working in a search to filter values based on a lookup table and i am having a difficult time with...

by Communicator in

Display line chart of average of fields

I have quiz values for 10 quizzes. Each quiz is a column and the values are 0-100 in each row. I am trying to just ...

by Engager in

How to Calculate the Percentage of each entry

I have the following SPL and I want to show table below. The value of Total must be equal to count of events (1588). ...

by Explorer in

Capture and remove zeros from ipv4 address

Hello I'm trying to capture the ip address from the PXE log example shown. I want to also trim any preceding 0 so I c...

by Explorer in

Create a stats line per host

Hi, We have a custom search that should alert when a critical host, that we have defined in the search, is missing....

by Communicator in

Why source name in chinese characters display with messy code in web browser？

Hi I've upload a file with chinese name，the content(which is also in chinese character)can display and query normal...

by New Member in

PROPS Configuration for csv without Header Source files

Hello, I have issues to write PROPS configuration file for following csv file (please see screenshot below for samp...

by Motivator in

Transforming Search Output

base search| fields _time host pdfpath status| stats values(pdfpath) as pdfpath values(host) as host by _time status|...

by Communicator in

Get Updates on the Splunk Community!

Splunk Search

Discussions

How can I combine two different chart queries into a single and get count

Field extraction

how to add two values in a field and percentage of them with total

How to run an eval command if a statment is true, and keep non true data in the search?

Add manual input through text box into a new column in a table splunk

how to match multiple regex in splunk?

Matching results with previous results of the same search

Unable to fetch result of hosts which are not having any activity from last 60 mins

Join wont perform accurate count (Event table joined to summary table)

Search processing Query

Splunk Report after keyword

Typecasting String to Hex/Dec/Oct

How to match strings that in a text .file with my logs that indexed?

compare 2 field different source type

Extract multiple key value pairs from one of the partially auto extracted field

Convert 210910085155 to yymmddhhmmss or dd/mm/yy hh:mm:ss

Webtools app how to make get requests

Backslash character on subsearch result

Display line chart of average of fields

How to Calculate the Percentage of each entry

Capture and remove zeros from ipv4 address

Create a stats line per host

Why source name in chinese characters display with messy code in web browser？

PROPS Configuration for csv without Header Source files

Transforming Search Output

Can’t make it to .conf25? Join us online!

Community Content Calendar, September edition

Splunkbase Unveils New App Listing Management Public Preview

Leveraging Automated Threat Analysis Across the Splunk Ecosystem

Average time in multivalue field

Help me with splunk query to monitor CPU and Memor...

How can i export a list of all services in APM

Splunk Answers Content Calendar May 2025!

MLTKC how should i check jupyter notebook func in ...

Splunk Search

Are you a member of the Splunk Community?

Discussions

Can’t make it to .conf25? Join us online!