Splunk Search

Community Activity

Splunk lab module 4 I am working on Splunk fundamentals lab 4 module, I have added data as administrator and when I log in as power user,... by pooja New Member in Splunk Search 03-08-2021 0 0	0	0
Search to show me events that have timestamps out by a lot Hello,I have the following search but I want it to show me the delay less and more out by more than 1 hour in a bette... by robnewman666 Path Finder in Splunk Search 03-08-2021 1 4	1	4
Getting the timestamp when the status has changed We are getting the data from Database for every 5mins.Even the field value doesn't change the same value will be inde... by honey527 New Member in Splunk Search 03-08-2021 0 1	0	1
How to reassign orphaned search in splunk light? we use splunk light in 7.1.0.I deleted a User last week and did not recocnized that their was a sheduled search of th... by danielhedelt New Member in Splunk Search 03-08-2021 0 0	0	0
Regex expression prd-sso-data-science-711-3006-compute-roledev-1000-535-aibench-mlops-service-compute-role above are the field values ... by hashsplunk Loves-to-Learn Lots in Splunk Search 03-07-2021 0 1	0	1
Splunk dashboard single value trendinterval as dynamic Hello, I' m currently working on how to make dashboard with our Server's VM Count logs.Our logs are being collected a... by splunkkid Path Finder in Splunk Search 03-07-2021 0 2	0	2
Splunk Fundamentals 1 Module 5 question In module 5, of Splunk Fundamentals 1, during the lab exercise, it asks to do a search and says to notice the host=we... by Marqui New Member in Splunk Search 03-07-2021 0 1	0	1
Display in range data based on application time taken Hi Splunkers, I am looking to display the dataProduct 1Seconds Cumulative response % run... by asharmaeqfx Path Finder in Splunk Search 03-07-2021 0 1	0	1
How do I only return the first name listed under each Group and how do I count by Groups? The following query just gives me results but I also need to count by each Group.index=Container_ship action=Decision... by snuggas New Member in Splunk Search 03-07-2021 0 1	0	1
Largest files and its sizes in each Linux host Hi, I'm looking to enlist the largest files per Linux host, i.e. if I have 6 hosts, all running on Linux let's assume... by hishamjan Explorer in Splunk Search 03-07-2021 0 1	0	1
How do I monitor & troubleshoot if all data sources are communicating with assigned Indexers? How do I monitor & troubleshoot if all data sources are communicating with assigned Indexers? The create a report or ... by SamHTexas Builder in Splunk Search 03-07-2021 0 0	0	0
Adding appendcols to table to produce two curves I'm creating demand and supply curves which use streamstats to accumulate demand and supply in order to intercept the... by supremefeast Observer in Splunk Search 03-07-2021 0 1	0	1
How to show logs happened 2 min before and 2 min after certain log Hi Splunkers,i have search like thisindex=pkg_prespvm host IN (*)\| dedup _raw\| transaction host startswith="[Informat... by ivana27 Path Finder in Splunk Search 03-07-2021 0 1	0	1
Concurrent VPN connections. Hi guys, I'm going crazy and I'm completely lost. I'm trying to create a query that displays concurrent connections. ... by weetabixsplunk Explorer in Splunk Search 03-07-2021 0 1	0	1
Combine Sub searches with different time references Hey, right now I am a bit messed up in the mind and not sure if I try to find an overly complicated solution to a may... by MarcusBB Explorer in Splunk Search 03-07-2021 0 3	0	3
How to get counts of same field with different info Hello,We are logging various info during job level. Message filed carries all the info. I would like to get count of... by Murali51 Explorer in Splunk Search 03-06-2021 0 8	0	8
How to leverage a secondary time field at scale? I have a dataset that has both FINISHDATE and CHANGEDATE fields in text. We use strptime(CHANGEDATE) for _time but w... by woodcock Esteemed Legend in Splunk Search 03-06-2021 1 3	1	3
Where to start learning to write splunk queries by AnonymousPerson New Member in Splunk Search 03-06-2021 0 2	0	2
Read regex based data from a log file using splunk forwarder I have log file which polls an endpoint and if new version has come then only performs the operation. All the polling... by raunakomar New Member in Splunk Search 03-06-2021 0 1	0	1
COmpare or join 2 fields to 3rd output HI All,Need help in comparing 2 fields or join 2 values to build a table for another 2 field.CODE 1: index=opennms "... by jerinvarghese Communicator in Splunk Search 03-06-2021 0 1	0	1
Help calculating error breach rate Hi,I'm trying to build a splunk query to calculate error rate breaches. Essentially, how often in 5 minute intervals,... by jche714 Observer in Splunk Search 03-05-2021 0 3	0	3
Comparing field with weekly average Hi,I am trying to compare a field (Job duration) with its weekly average. Something is wrong with my join. It is retu... by sk Explorer in Splunk Search 03-05-2021 0 4	0	4
How can i calculate the time difference with 1 key value and 1 col of data? Hi there Splunkers,Maybe the title is a little bit weird but the point is, We have an entity who travel between 2 loc... by Felipe_Barahona Engager in Splunk Search 03-05-2021 0 4	0	4
How do I extract a substring beginning by some characters and ending by : Hi,I have this in my message string:Errors in file /u02/app/oracle/diag/rdbms/pwein1a/pwein1a1/trace/pwein1a1_cjq0_28... by proussinbnc Engager in Splunk Search 03-05-2021 0 2	0	2
List indexes that are being used Hello, I am trying to bring up a search that will tell me how much each index is being used, but the search_index fie... by robnewman666 Path Finder in Splunk Search 03-05-2021 0 2	0	2