Splunk Search

Community Activity

	How to get unique Maximum value of corresponding field? Hi there, I have data like this:Server loadA65A50B35C55B45C70 I want to get a maximum peak loads of each server type ... by ISP8055 Path Finder in Splunk Search 07-09-2021 0 1	0	1
	Using Rex to combine multiple fields in separate columns Hello Splunk Community! I was hoping if someone can help me out here. I have been having problems adding a third fiel... by MJA411 Explorer in Splunk Search 07-09-2021 0 2	0	2
	Extracting field from JSON data Hi, New to Splunk, I am trying to create a Test Automation dashboard. I have the following JSON in my SPLUNK events w... by JP Explorer in Splunk Search 07-09-2021 0 3	0	3
	REGEX Hi guys, im noob in regular expressions!!2021-07-05 23:22:12.807 +01:00 [WRN] XXXXX.Membership.Renew Long Running Req... by dteixeira98 Engager in Splunk Search 07-09-2021 0 3	0	3
	Find the count of a specific field value in json array of objects. Hi i have a json data which i am working on and i used fieldsummary to get data similar to below image.sample example... by nikitha15 Explorer in Splunk Search 07-09-2021 0 2	0	2
	Unable to pass header using curl command I am trying to hit a URL from splunk using curl command. The end point needs an header to be passed with the key valu... by vik Explorer in Splunk Search 07-08-2021 0 1	0	1
	Sum Field value with no duplicates and how to timechart it. Hello Team,I have just started learning Splunk Example: I have done basic search index="xyz" \|I have got some logs l... by Rakesh915473 Explorer in Splunk Search 07-08-2021 0 5	0	5
	Find records with a certain field defined I'm looking for records that have a "user_email" field defined and not equal to "unauthenticated" How do I do this: s... by ibmbaranski Engager in Splunk Search 07-08-2021 0 2	0	2
	Multiple rex expressions I'm trying to write to write a search to extract a couple of fields using rex. The text string to search is:"SG:G006 ... by subspacefield Engager in Splunk Search 07-08-2021 0 1	0	1
	Subtract input from output HiI have some process that does not finish successfully, Now i want to trace them with splunk.here is scenario:I have... by indeed_2000 Motivator in Splunk Search 07-08-2021 0 1	0	1
	Default splunk_server_group Scenario: Two large organizations with two separate Splunk implementations. Org A acquires Org B and in a consolida... by beaunewcomb Communicator in Splunk Search 07-08-2021 0 1	0	1
	Filtered data count against license? I have to assume this has been asked over and over but I can't seem to find it.If I use inputs..conf on my indexer t... by timsheets13 Loves-to-Learn in Splunk Search 07-08-2021 0 1	0	1
	lookup table, Hi have a report that is sent of a daily basis. The report provides a count for every one hour bucket. Sometimes ge... by kishan2356 Explorer in Splunk Search 07-08-2021 0 0	0	0
	Searches separated by Colon I source database that displays all of the info i need that is separated by colon. Example "ilruPartNumber":"12345".,... by ekucevic Loves-to-Learn Everything in Splunk Search 07-08-2021 0 5	0	5
	How to parse a JSON with a mutable node? I receive some logs in json format, but one of the nodes is mutable, sometimes it's an array, sometimes it is not. Ta... by JChris_ Path Finder in Splunk Search 07-08-2021 0 5	0	5
	Add count of field instead of just count it Hi I have log file that each minute store 1 event like this8:00 18:01 18:02 1 instead of counting i want store ... by indeed_2000 Motivator in Splunk Search 07-08-2021 0 7	0	7
	color statistic table cell dynamically on certain rule using other field value Want to change color of statistic table cell value on certain rule using other field.TABLE:Region, Device, Service, L... by Abhineet Loves-to-Learn Everything in Splunk Search 07-08-2021 0 1	0	1
	How to combine event and summary indexes into a single search? Is it possible to setup a dashboard query that uses the main event index for "today", and summary index for all other... by timgren Path Finder in Splunk Search 07-08-2021 0 1	0	1
	Running an eval after a sub-search make my comparison negative I am trying to make a comparison of one field against itself but from a previous day. The use case is I'm trying to ... by mybestfriendbob Explorer in Splunk Search 07-08-2021 0 3	0	3
	How to run/optimize long ad-hoc searches with lookup I'm trying to see if there are hits with Kaseya related domains in my Web datamodel. As I understand we need to use w... by dauren_akilbeko Communicator in Splunk Search 07-08-2021 0 2	0	2
	Not able to create a table from fields extracted from a JSON using regex Hi All,I wrote a regular expression to extract fields from an event containing data in the JSON format. The regular e... by nikhil108 Observer in Splunk Search 07-08-2021 0 3	0	3
	Remove double quotes and slashes from the field i am having field like this below. message :"{"\payement":"xxx", "\account:" xxx"}" I want the first and last q... by Rukmani_Splunk Path Finder in Splunk Search 07-08-2021 0 4	0	4
	Microsoft Office 365 Reporting Add-on not obeying interval configuration Hi, we are using version 1.2.4 on Splunk 7.3.7, and we noticed our interval setting of (interval=600 / 10 mins) is no... by becksyboy Contributor in Splunk Search 07-08-2021 0 4	0	4
	syslogs for network equipments to forward syslog to splunk indexer Greetings!! I would like to ask about Syslog logs for network devices, I have added new network devices by doing co... by pacifikn Communicator in Splunk Search 07-07-2021 0 4	0	4
	TIME_PREFIX and TIME_FORMAT for Props configuration File Hi,How I would write TIME_PREFIX and TIME_FORMAT for props configuration file for the following events (4- sample ev... by SplunkDash Motivator in Splunk Search 07-07-2021 0 3	0	3