Splunk Search

Community Activity

Aggregate query help Hi Team - I am trying to first search and then aggregate results from following Splunk logs:Raw format: "buildDimens... by aag Engager in Splunk Search 07-23-2021 0 2	0	2
How do I get Spunk to parse the events returned by a custom generating command? I have a custom generating command that returns events to Splunk, however those events are not parsed, so the kv data... by mlf Path Finder in Splunk Search 07-23-2021 0 0	0	0
Splunk dashboard : Text input token is caching the previously entered value. I have a dashboard with multiple inputs. These inputs are like filters on top of basic search. I want1. if phone mdn ... by bhavika100 Explorer in Splunk Search 07-23-2021 0 4	0	4
Field extraction with multiple matches per line Hi all, I'm trying to pull out the MAC addresses from a series of records which is mostly working using the followin... by martinpugh Explorer in Splunk Search 07-23-2021 0 3	0	3
How to join 2 indexes Hi All,I want to join two indexes and get a result. Search Query -1index=Microsoft\| eval Event_Date=mvindex('eventDat... by alexspunkshell Contributor in Splunk Search 07-23-2021 0 9	0	9
How to edit my search to omit results of a subsearch from the main search using NOT? Hello Splunkers, I've been trying to solve this problem for a while now but I am still not able to NOT the contents o... by lbogle Contributor in Splunk Search 07-23-2021 0 10	0	10
How to skip/ignore one letter character from filtered log Hello Team, rex field=_raw "string_list=%25(?<new_field1>\w+)%25" Above condition will get a word between %25 to %25,... by Rakesh915473 Explorer in Splunk Search 07-23-2021 0 4	0	4
How to get data from log and count event values Hello Team,I'm very new to splunk, I have below two logs"message": "api.main REQ user1 10.10.44.76 \"GET /api/v1/data... by Rakesh915473 Explorer in Splunk Search 07-23-2021 0 12	0	12
Performing operations on a list of values with a single value HI,As mentioned in the subject, I want to perform operations on a list of values with a single value. To be clearer, ... by jaysonpryde Path Finder in Splunk Search 07-23-2021 0 5	0	5
How to search for last 6 months for event indexed every month? Hi,I have a summary index which gets indexed once in a month. I have a query which runs based on current month looks ... by sangs8788 Communicator in Splunk Search 07-23-2021 0 0	0	0
Regex to extract parts of a string delimited by dost (.) Hello my loves I have one quick question Lets say I have this two stringsAUJ.UEIEJ.829839.239383033.4788383.27383.8HJ... by cindygibbs_08 Communicator in Splunk Search 07-22-2021 0 3	0	3
Compare a field with a single string against a Multi Field String My use case is the following, I have login information regarding which ASN a user logged in today on the field ASN an... by JRamirezEnosys Explorer in Splunk Search 07-22-2021 0 2	0	2
Plotting bar chart X axis are JSON keys and Y axis are length of JSON values HiI have the following JSON object.I would like to be able to ultimately create a bar chart with the following: X-Axi... by oKeNiDJE Engager in Splunk Search 07-22-2021 0 5	0	5
How to insert Bar Graph Chart with patterns? Hi,I need to know if it is possible to create bar chart with patterns to differentiate along with colors. I already h... by mbasharat Builder in Splunk Search 07-22-2021 1 0	1	0
How to extract numbers from multivalue fields Hello Guys I have a sort of quick question that has been challanging me. I use this SPL to extract some info \| stats... by cindygibbs_08 Communicator in Splunk Search 07-22-2021 0 2	0	2
Counting how many unique id #s have only INFO logs (rather than Error logs) I'm trying work with a bunch of system logs that are either ERROR or INFO logs. Each has a unique id # that is specif... by muhan421 Loves-to-Learn Lots in Splunk Search 07-22-2021 0 0	0	0
Lookup missing definition Good afternoon, I can't make sense of why I can't extract a definition from a particular csv. I doublechecked permiss... by victornajduch Loves-to-Learn Everything in Splunk Search 07-22-2021 0 3	0	3
how to search events in the last 24 hours from a specified field Hello - This should be a pretty simple search but I am new to Splunk. I want to search events that have occurred i... by dboyer313 New Member in Splunk Search 07-22-2021 0 2	0	2
How to calculate Latency Over Last Minute, Total Requests/min, LBs with Highest Unhealthy Host % in the load balancer da How to calculate Latency Over Last Minute, Total Requests/min, LBs with Highest Unhealthy Host % in the load balancer... by rajiv_r Explorer in Splunk Search 07-22-2021 0 0	0	0
Assign value to multiple fields in an event based on single if condition Hi,I have an use case where I have an if condition involving multiple comparisons. Based on its outcome, I want to r... by payl_chdhry Path Finder in Splunk Search 07-22-2021 0 1	0	1
makecontinuous not working for first/initial time span If I run the below query for last 7 days, and if there is no data in logs matching condition index=abc "searchTerm" f... by VS0909 Communicator in Splunk Search 07-22-2021 0 4	0	4
grouping requests by percentile Good morning, I am trying to group the count by percentile however all is showing in 0% which is in correct: source=... by joe06031990 Communicator in Splunk Search 07-22-2021 0 4	0	4
Search results between a certain number when result has a letter before number e.g C1000 Hey Everyone, I am trying to search for a field to see how much a customer is spending but there is a letter in front... by Callum_f Explorer in Splunk Search 07-21-2021 0 1	0	1
Create time chart for frequency of results from a specific search Hey Everyone,I am new to Splunk and am struggling to create a simple time chart for a query I have made. I want to cr... by Callum_f Explorer in Splunk Search 07-21-2021 0 16	0	16
Query to show API health and Availability Hi Everyone, Please, What is the search query to find:1- The current health status of URL check for API services if (... by Noah Explorer in Splunk Search 07-21-2021 0 1	0	1