Splunk Search

Community Activity

splunk search {<!-- -->Exams : { “Message” : “Passed in Maths paper 1 exam” ,”Result”:”Passed”, ’Name’ : “s3”}SubjecctName:Passed-Maths-Sem... by satheesh121 Observer in Splunk Search 04-02-2021 0 6	0	6
Find Job Duration from two separate events. Jobs Running on daily basis.Events like-1) "Job_Name": "XYZ", "status":" Start"2) "Job_Name": "XYZ", "status":" SUCCE... by saty586 Explorer in Splunk Search 04-02-2021 0 1	0	1
How to update geoip database for iplocation command? Hello, I use Splunk's iplocation (not Maxmind or other) command extensively in our monitoring dashboards. Since thi... by echojacques Builder in Splunk Search 04-02-2021 8 20	8	20
Find highest and lowest salary taker employee Hi i need to find the name employee name who are taking high salary and low salary. please help in thisField Names:Mo... by SA2 Explorer in Splunk Search 04-02-2021 0 4	0	4
Industry standard salary expectation is year of experience * 1.5. Find out employees who are all not matching these crit HiI need to count the employee numbers who are not match with experience*1.5. i tried lot with eval and where command... by SA2 Explorer in Splunk Search 04-02-2021 0 1	0	1
Bar chart comparing 2 values Hi,I have this stats tableColumn1 Column2400 500 I want to have a bar chart which shows 2 bars s... by SS1 Path Finder in Splunk Search 04-02-2021 0 1	0	1
Multivalue fields match issue Hi,I have below sample dataset. This dataset is for an asset being compliant or not compliant. What I need is:If an a... by mbasharat Builder in Splunk Search 04-01-2021 0 1	0	1
rex extract Value session_value containg this info:not found, name: user@mycompany.com more text here Trying to use this:rex fiel... by jenkinsta Path Finder in Splunk Search 04-01-2021 0 1	0	1
JSON vector of vector I have a data source which I collect using DB CONNECT from an oracle database which brings the information in JSON fo... by splunkcol Builder in Splunk Search 04-01-2021 0 6	0	6
What causes delayed searches alerts in Splunk Enterprise - Error says "searches delayed" What do I need to check / do to resolve this please?What causes delayed searches alerts in Splunk Enterprise - Error ... by SamHTexas Builder in Splunk Search 04-01-2021 0 8	0	8
Rex Command with multiple formatting options Trying to get the rex command to extract the last name when the user field has multiple formatting outputs below. Is ... by Dude Engager in Splunk Search 04-01-2021 0 3	0	3
Grouping data by multiple attribute values I have basic web logs with username and jsessionid. I want to group (assume a single index, with one set of data). So... by alphadog00 Splunk Employee in Splunk Search 04-01-2021 0 7	0	7
Querying Events in Splunk for MS vs MS Add-on for splunk I'm sending data from Azure SQL via event hub. Been using the MS add on for splunk, which as been working pretty we... by zippo706 Explorer in Splunk Search 04-01-2021 0 0	0	0
How to use rex in Calculated Fields? Hi, I'm new to this forum and Splunk in general, so thank you in advance for all your help. I'm trying to use rex in... by mmagnuson Engager in Splunk Search 04-01-2021 0 4	0	4
How to compare two lookup files and get two coloumns in serch I have two lookups B1.csv and B2.csv. B1 has block member and B2 has block id and both have one same column departmen... by Dheeraj25 Engager in Splunk Search 04-01-2021 0 3	0	3
Inputlookup Hi, I have the below lookup file sbl.csvIt has 3 rows 1. A=1, B = " Added" , C= 31/3/2021 04:16pm2. .A=1, B = " Added... by chuck_life09 Path Finder in Splunk Search 04-01-2021 0 5	0	5
Events per second without hitting limitations I am looking to calculate per second transactions but when doing so through either stats or a timechart I am hitting ... by aohls Contributor in Splunk Search 04-01-2021 0 0	0	0
Why ITSI Install button is not showing in Splunkbase Hi Splunkers, I'm trying to install ITSI, but I don't see an install button. I can install it by downloading it manua... by Noorzai Engager in Splunk Search 04-01-2021 0 4	0	4
how long metadata last, retention policy? Hello,I'm using metadata on hosts to get their first event time etc, are they accurate even on oldest records?\| metad... by splunkreal Motivator in Splunk Search 04-01-2021 0 2	0	2
Need help with Timechart command Hey all, so im trying to generate a time chart. If i perform the the stats command to validate the number of state I ... by Anthonylucian Path Finder in Splunk Search 04-01-2021 0 5	0	5
access row in xyseries Hello,I have a table from a xyseries. Each row consists of different strings of colors. I would like to pick one row ... by gerbert Path Finder in Splunk Search 04-01-2021 0 2	0	2
get no results by using tstats in summary index I have a summary index that I created from existing index by using tstats command.when I try to use tstats on the sum... by mcohen13 Loves-to-Learn in Splunk Search 04-01-2021 0 0	0	0
Can't search modified _time value using earliest/latest requests. I ran into a timeformatting issue with some of my logs due to the string starting with the following time format resu... by rlaan Path Finder in Splunk Search 04-01-2021 0 1	0	1
Metrics mrollup issue hello ,we have a problem with mrollup procedure for metrics indexes.We have setup e daily rollup for a metrics index;... by giotto69 Observer in Splunk Search 04-01-2021 0 0	0	0
windows perfmon network utilization I'm trying to figure out to calculate the network utilization on this server using the eval and stats and I'm having ... by ggfsplunk Engager in Splunk Search 04-01-2021 0 4	0	4