Splunk Search

Community Activity

Splunk query for Forwarder , Indexer & SH restart Could someone please help me with the Splunk query to configure the alert if Forwarder, Indexer, or search head had r... by alexspunkshell Contributor in Splunk Search 03-29-2021 0 1	0	1
Merge the data on index Hi All,I'm in this situationindex a index bid neme idneme1simone 1simone3francesco 2marco4luca I have a scheduled ... by simo Path Finder in Splunk Search 03-29-2021 0 6	0	6
Trouble indexing special characters in UTF-8 Hi Splunk community!I'm trying to index a CSV file where multiple values contains special characters such as æ, ø, å ... by nc_lks Engager in Splunk Search 03-29-2021 0 2	0	2
How to have resutls from \| stats values(field) shown in individual rows Hello guys I am trying to download a CVS file from a query that comes after a \| stats values(field) command, thus thi... by andres91302 Communicator in Splunk Search 03-28-2021 0 2	0	2
UPS monitoring dashboard Hi Is there any app in Splunk to monitor ups logs or any sample, demo ups monitoring dashboard available which I use... by jaibalaraman Path Finder in Splunk Search 03-28-2021 0 3	0	3
search brackets and special charachters HiHow can search something like this: 40: message.body.v10.timeLocalTransaction: [00*] FYI: seems not support special... by indeed_2000 Motivator in Splunk Search 03-28-2021 0 5	0	5
Download results a CVS file properly with column values instead of rows! hello guys.. I am having a HUGE trouble when downloading my results as a CVS file.this is my query\| search ....\| tabl... by andres91302 Communicator in Splunk Search 03-28-2021 0 4	0	4
How to build a table to where the rows are results from previous field operation about common and uncommon values Hello my dear splunkers I hope you are doing very well.. I would REALLY be so thankful if u can help me put with the ... by andres91302 Communicator in Splunk Search 03-28-2021 0 3	0	3
How to create a table where the rows are results from previous field operation about common and uncommon values Hello my dear splunkers I hope you are doing very well.. I would REALLY be so thankful if u can help me put with the ... by andres91302 Communicator in Splunk Search 03-28-2021 0 2	0	2
Splunk - Sendemail for each output row Hi,I have a tabular results of folks, who are using index=* in their searches.So i have SPL that outputs belowUserapp... by vamsigurram Path Finder in Splunk Search 03-28-2021 0 2	0	2
Eval Case Sequence on Conditions Hi Splunk Community,How does Spunk prioritize conditional case functions? Lets say I have a case function with 2 cond... by Mary666 Communicator in Splunk Search 03-28-2021 0 3	0	3
How do I investigate delayed searched reported in Health status under Splunkd I keep getting delayed searches marked in red "Health Status - Splunkd". How do I investigate and fix this issue? by SamHTexas Builder in Splunk Search 03-28-2021 0 2	0	2
Is there a way to share Dashboard panels between Splunk Enterprise & ES ? Is there a way to share Dashboard panels between Splunk Enterprise & ES ? So a user can check Dashboards from one spo... by SamHTexas Builder in Splunk Search 03-28-2021 1 1	1	1
How to sum values from pannels in a Dashboard Hello People !! II have a dashboard that has 5 pannels with single values in it, I want to creat a new single value p... by andres91302 Communicator in Splunk Search 03-28-2021 0 3	0	3
Appending 2 searches but 1 search doesnt contain values after certain time I got the answer for my previous question here : https://community.splunk.com/t5/Splunk-Search/Join-searches-and-make... by balash1979 Path Finder in Splunk Search 03-28-2021 0 1	0	1
Data frequency for all index and sourcetype. Hi All, I was looking for a query which can look for the previous one month data, calculate frequency of data being ... by arjit Path Finder in Splunk Search 03-27-2021 0 2	0	2
problem with 'condition match' Hello,I want to conduct a search, set a token according to the search result and then set another bunch of tokens dep... by gerbert Path Finder in Splunk Search 03-27-2021 0 6	0	6
"condition match" tokens Hello,I want to conduct a search, set a token according to the search result and then set another bunch of tokens dep... by a1eX Observer in Splunk Search 03-27-2021 0 1	0	1
Ignore a certain value to be shown in timechart I am trying to plot only cumulative users in timechart but daily user value also comes in the timechart. How can I ig... by balash1979 Path Finder in Splunk Search 03-27-2021 0 1	0	1
problem with "condition match" tokens Hello,I want to conduct a search, set a token according to the search result and then set another bunch of tokens dep... by gerbert Path Finder in Splunk Search 03-27-2021 0 0	0	0
problem with "condition match" tokens Hello,I want to conduct a search, set a token according to the search result and then set another bunch of tokens dep... by gerbert Path Finder in Splunk Search 03-27-2021 0 0	0	0
not allowed here Hello,I want to conduct a search, set a token according to the search result and then set another bunch of tokens dep... by gerbert Path Finder in Splunk Search 03-27-2021 0 2	0	2
How to color the columns based on previous column value MessagesNov 20Dec 20Jan 20Feb 20Messge 00100Messge 11311Messge 211000Messge 31000Messge 49500Messge 51100Messge 6110... by Vignesh-107 Path Finder in Splunk Search 03-27-2021 0 14	0	14
How achieve a conjunction (AND operator) in a JSON nested Key-value(KV) array Event Data:{"Debug":[ {"Action":"User-Created","Result":"OK"}, {"Action":"Granted-Permissions","Result":"Failed"}]}... by T0n1g3 New Member in Splunk Search 03-26-2021 0 1	0	1
stats count(eval(recipient="@thing.com*")) not providing results I have a search I am running, and I am trying to enumerate this one specific email domain's email responses, if it wa... by Denorsmith Engager in Splunk Search 03-26-2021 0 1	0	1