Splunk Search

Discussions

Thread Info

How to update enableSched in savedsearch.conf using python script

I have to create a custom command using python script to update a particular property(enableSched) from 1 to 0 or 0 t...

by Path Finder in

Produce single row by combining multiple row and column

Hi Splunk, I have a table like below Component Green Amber Red Resp_time 0 200 400 5xx 0 50 100 4xx 0 50 10...

by Engager in

Comparing results from two different dates vertically

I would like to compare specific response status stats vertically and not horizontally so that the values line up and...

by Path Finder in

Why does tstats command return different results with accelerated vs non-accelerated Data Models?

I was working with DataModels and I came across something strange about them when they are accelerated vs when they a...

by Engager in

Experiencing error :splunk: command not found

Hi, Kinda new to *nix o/s; its been about 10 years. Anyway I have READ the doc's and checked the answers pages, bu...

by Engager in

Find first matching node of json

Hi, Based on the following json document, I want to find the value of "Geography" where City is input. Here...

by Engager in

How to append search results but also filter one query with the other

Hello, I'm trying to write a query where I provide a key identifier (say "A"), and the query both finds matching r...

by New Member in

How to search based on multiple indexes and their respective sourceTypes

Hi, I have index called Index1 which has sourcetype called SourceType1 and another index called Index2 with sour...

by Engager in

Filter timeline results by items that had a change of more than 50%

I have a basic timechart query that graphs the number of Queries per second (QPS) for several hosts. I need to filter...

by Explorer in

Compare CSV to search

Hello everyone, I'd like to start out by saying I'm really quite new to Splunk, and we run older versions(6.6.3 and...

by Engager in

Duplicate Results on Command-Line Query vice No Duplicates via UI

What would cause a command line query ( bin/splunk search "..." ) to return duplicate results over what the UI would ...

by Explorer in

Inability to delete alerts/reports after LDAP update

Hello,I recently updated a distributed environment with a bundle via the deployer to update the authentication.conf t...

by Loves-to-Learn in

Splunk Cloud: Lookups

Hi Splunk Experts, I hope to get a quick hint on my issue. I have a Splunk Cloud setup with two search heads, one o...

by Observer in

non searchable sourcetypes

Hello All, I am looking for a query that can provide me with a list of sourcetypes that have not been searched .Kin...

by Loves-to-Learn Lots in

How to get an output containing all host details along with their last update times?

How to get an output containing all host details of all time along with their last update times? Below search is ...

by Explorer in

Alert when a field value changes

Working on a query to generate an alert when a field value changes. The requirement is to detect the change in IP for...

by Explorer in

Return top, middle, and bottom returns from query results using stats

I have this query index=x host=y "searchTerm" | stats Avg(Field1) Avg(Field2) which returns a count of N...

by Engager in

Right to left text in a left to right expression causing cursor and keyboard layout issues

I am trying to write an eval expression to translate a few different languages into English. One of the languages i...

by Explorer in

Duplicate fields in Splunk events

Hi All, When we doing a splunk search in our application (sh_app1), we noticed some fields are duplicated / double ...

by Explorer in

Dynamically generating a Field Name for a Table

Hi everyone! I'm trying to figure out how to map a field name dynamically to a column of a table. as it stands the ...

by New Member in

Splunk Filter from Lookup

Hi Splunk Experts,I've a lookup with field 'User', 'Rates' and 'Priority' (values 1 to 5). I use this lookup in my se...

by Contributor in

cell color based on text pattern or partial text

I am using a Statistics table for the visualization of some data. Is there a way to colorize cells based on partial t...

by Observer in

Jmeter Results on splunk dashboard

We have a requirement to have a splunk dashboard which shows all the testcases that we have run from Jmeter for visib...

by Path Finder in

Stats values to be calculated in 2 ways for a dashboard base query

Hi,I have 2 panels for which the events flow is high and so I am trying to include the stats command along with the f...

by Explorer in

Help needed with steps to uninstall python upgrade readiness app

Hello, We have python upgrade readiness app installed in our on prem clustered environment and enabled. Can someo...

by Motivator in

Get Updates on the Splunk Community!

Splunk Search

Discussions

How to update enableSched in savedsearch.conf using python script

Produce single row by combining multiple row and column

Comparing results from two different dates vertically

Why does tstats command return different results with accelerated vs non-accelerated Data Models?

Experiencing error :splunk: command not found

Find first matching node of json

How to append search results but also filter one query with the other

How to search based on multiple indexes and their respective sourceTypes

Filter timeline results by items that had a change of more than 50%

Compare CSV to search

Duplicate Results on Command-Line Query vice No Duplicates via UI

Inability to delete alerts/reports after LDAP update

Splunk Cloud: Lookups

non searchable sourcetypes

How to get an output containing all host details along with their last update times?

Alert when a field value changes

Return top, middle, and bottom returns from query results using stats

Right to left text in a left to right expression causing cursor and keyboard layout issues

Duplicate fields in Splunk events

Dynamically generating a Field Name for a Table

Splunk Filter from Lookup

cell color based on text pattern or partial text

Jmeter Results on splunk dashboard

Stats values to be calculated in 2 ways for a dashboard base query

Help needed with steps to uninstall python upgrade readiness app

CX Day is Coming!

Strengthen Your Future: A Look Back at Splunk 10 Innovations and .conf25 Highlights!

Now Offering the AI Assistant Usage Dashboard in Cloud Monitoring Console

In Splunk studio, is it possible to populate a tex...

Help me with splunk query to monitor CPU and Memor...

How can i export a list of all services in APM

Splunk Answers Content Calendar May 2025!

MLTKC how should i check jupyter notebook func in ...

Splunk Search

Are you a member of the Splunk Community?

Discussions