Splunk Search

Community Activity

Lookup missing definition Good afternoon, I can't make sense of why I can't extract a definition from a particular csv. I doublechecked permiss... by victornajduch Loves-to-Learn Everything in Splunk Search 07-22-2021 0 3	0	3
how to search events in the last 24 hours from a specified field Hello - This should be a pretty simple search but I am new to Splunk. I want to search events that have occurred i... by dboyer313 New Member in Splunk Search 07-22-2021 0 2	0	2
How to calculate Latency Over Last Minute, Total Requests/min, LBs with Highest Unhealthy Host % in the load balancer da How to calculate Latency Over Last Minute, Total Requests/min, LBs with Highest Unhealthy Host % in the load balancer... by rajiv_r Explorer in Splunk Search 07-22-2021 0 0	0	0
Assign value to multiple fields in an event based on single if condition Hi,I have an use case where I have an if condition involving multiple comparisons. Based on its outcome, I want to r... by payl_chdhry Path Finder in Splunk Search 07-22-2021 0 1	0	1
makecontinuous not working for first/initial time span If I run the below query for last 7 days, and if there is no data in logs matching condition index=abc "searchTerm" f... by VS0909 Communicator in Splunk Search 07-22-2021 0 4	0	4
grouping requests by percentile Good morning, I am trying to group the count by percentile however all is showing in 0% which is in correct: source=... by joe06031990 Communicator in Splunk Search 07-22-2021 0 4	0	4
Search results between a certain number when result has a letter before number e.g C1000 Hey Everyone, I am trying to search for a field to see how much a customer is spending but there is a letter in front... by Callum_f Explorer in Splunk Search 07-21-2021 0 1	0	1
Create time chart for frequency of results from a specific search Hey Everyone,I am new to Splunk and am struggling to create a simple time chart for a query I have made. I want to cr... by Callum_f Explorer in Splunk Search 07-21-2021 0 16	0	16
Query to show API health and Availability Hi Everyone, Please, What is the search query to find:1- The current health status of URL check for API services if (... by Noah Explorer in Splunk Search 07-21-2021 0 1	0	1
Search Time Issue I'm having a bit of issue with my current logic. Ideally my lookup would contain three months of data, however when t... by wilcomply13 Explorer in Splunk Search 07-21-2021 0 2	0	2
How to calculate shift users from SSL VPN login sessions I am wanted to calculate shift Analysts VPN session start and end time duration to exactly capture the shift during 2... by elxbee Loves-to-Learn in Splunk Search 07-21-2021 0 5	0	5
kv store search, send alert and also store the the alert sent information Hi everyone, I am trying to use Splunk to catch a flag and also send an alert in a report if department = "business ... by longmen Path Finder in Splunk Search 07-21-2021 0 14	0	14
json field extraction Hi Splunk Experts,Below is a sample event, I have below spath msg.message.details, I am trying to extract certain fi... by prasant Path Finder in Splunk Search 07-21-2021 0 4	0	4
Count with few eval and timechart Hi,i have a problem with a few queries. I have something actually like this: index = nsw_prod_eximee ERROR \| rex fi... by michalmartofel Observer in Splunk Search 07-21-2021 0 2	0	2
Join - how do I fillnull on a join? Join is much more efficient. Is it possible to fillnull on a join so that I can collect the results for events for w... by the_wolverine Champion in Splunk Search 07-21-2021 2 3	2	3
Different events number while searching via python sdk Hi,I am using python SDK to search with this configuration:query_kwargs = {<!-- -->'earliest_time': earliest, ... by osnathy83 Observer in Splunk Search 07-21-2021 0 0	0	0
Inputlookup some data not matching with dbxquery I have a dbxquery which pulls some applicationdata which includes servername. Also I have a inputlookup which fetche... by rijuth New Member in Splunk Search 07-20-2021 0 2	0	2
Search - Combine different events which are results of a single search command Hi,My Jenkins sends my testresults data for the same job (Automation regression tests job) to Splunk in multiple eve... by JP Explorer in Splunk Search 07-20-2021 0 2	0	2
Time Chart Command Question I am reading:The following section: https://docs.splunk.com/Documentation/Splunk/latest/SearchReference/timechartlimi... by jason_hotchkiss Communicator in Splunk Search 07-20-2021 0 2	0	2
Col operation Hi everyone,Is it possible to achieve this: My search has resulted in four columnsColumn1 Column2 Colu... by mandyst Engager in Splunk Search 07-20-2021 0 2	0	2
How to read an array of fields from a single event and make into different records ? Hi,In Splunk, I have Test Automation results logs which has details like Test case name, Test Status, Error, Duration... by JP Explorer in Splunk Search 07-20-2021 0 13	0	13
Using Time Modifiers in search for timechart Hello - I was reading this: https://docs.splunk.com/Documentation/SCS/current/Search/TimemodifiersBut it is not very... by jason_hotchkiss Communicator in Splunk Search 07-20-2021 0 2	0	2
Search for a snapshot count total for the last 20 mins on every hour I'm looking to do a search that captures a snapshot of how many devices from certain subnets we have had going throug... by FC50 Path Finder in Splunk Search 07-20-2021 0 9	0	9
Converting a field from a string to a number So, long story short...I am trying to determine the event count by source, which host is producing the most events in... by jason_hotchkiss Communicator in Splunk Search 07-20-2021 0 4	0	4
Extracting a field after a certain text string Hello, I'm trying to extract some SSID info into a field in Splunk. This info comes after a certain text string in so... by FC50 Path Finder in Splunk Search 07-20-2021 0 3	0	3