Splunk Search

Community Activity

Display the different color based on status value and Client Wise. run the below query and got the outputindex=xxx sc_status=201 OR sc_status=200\| stats count(eval(sc_status)) as "Tota... by sachdeva_2007 Explorer in Splunk Search 03-12-2021 0 1	0	1
search auto-finalized after time limit: 60 seconds / limits.conf Hello, Unfortunately, my complete query does not go through because of the following error:The search auto-finalized ... by exchanger Path Finder in Splunk Search 03-12-2021 1 1	1	1
How to compare output of a search to a lookup file? So I've got a lookup table full of hostnames that I want to compare to a search that returns only the active hosts so... by jtelep New Member in Splunk Search 03-12-2021 0 8	0	8
a little search assistance Hello all, I need some assistance using the search below to produce a timechart of the number of events per day for t... by tkerr1357 Path Finder in Splunk Search 03-12-2021 0 3	0	3
Splunk Table with data from multiple points in time I have a datasource that drops data into Splunk every 10 minutes that contains data about my team's workflow.The data... by TedWhite Engager in Splunk Search 03-12-2021 0 2	0	2
A value remains for a length of time I am looking for a search that returns an events(s) when the searched value remains for a set length of time. Using W... by troyhochsprung New Member in Splunk Search 03-12-2021 0 3	0	3
How many hours required to upgrade 7.2.1 version to latest version Hi Everyone,Can anyone please share your comments, how many hours required to upgrade the Splunk version from 7.2.1 t... by phanichintha Path Finder in Splunk Search 03-12-2021 0 1	0	1
extract some text into a field with rex I'm using Splunk to examine the event logs on some servers looking for details regarding application crashes with the... by leandromatperei Path Finder in Splunk Search 03-12-2021 0 3	0	3
Query to compare presence of fields Hi everyone,I am new to splunk and was unsuccessful with my query.Let's say many events are aggregated in an index fr... by jt New Member in Splunk Search 03-12-2021 0 1	0	1
Extracted fields in same table Hi,I have extracted 2 fields i.e. field1 & field2, while using the stats count command how do i use these extracted f... by SS1 Path Finder in Splunk Search 03-11-2021 0 3	0	3
query for transactions or grouping events Hi Team,I have the below logs in splunk and i'm looking for query to get the time taken to compete the run by each bo... by splunk_ier Engager in Splunk Search 03-11-2021 0 1	0	1
Search to group different fields from different events Hi! So ive been at this for hours attempting to use stats and transactions to do this.I have two events that look lik... by johnangelo Loves-to-Learn in Splunk Search 03-11-2021 0 5	0	5
Computing column differences This is result of a query that reflects license consumption by dayIndex3/2/20213/3/20213/4/20213/5/20213/6/20213/7/20... by ldnail_at_TI Path Finder in Splunk Search 03-11-2021 0 2	0	2
Using Regex to search events from a specific ip range Hello, I am new to Splunk and REGEX for that matter. What I am trying to accomplish is creating an alert when a speci... by 813_Gerb Engager in Splunk Search 03-11-2021 0 3	0	3
Working with periods in spath command I have a lot of json data that contains periods in the keys. I want to be able to expand one of the arrays in the dat... by Rjbeckwith Explorer in Splunk Search 03-11-2021 0 4	0	4
Need to mask the data twice in a single field Can you please help me in masking the data.Raw Data: -> "login": "44337754-004613081080P"I want the number to be mask... by Vignesh-107 Path Finder in Splunk Search 03-11-2021 0 2	0	2
Working regex elsewhere does not work in Splunk As seen in the first example, the expression I've constructed will capture the field values I want. However in the se... by mxanareckless Path Finder in Splunk Search 03-11-2021 0 1	0	1
Question about geostats Hello, I am new to SPL language. I have been working on 'geostats' recently and not quite sure what 'translatetoxy' ... by yan Engager in Splunk Search 03-11-2021 0 3	0	3
Uploading data to Splunk Cloud instance but unable to search it in Search & Reporting I'm attempting to follow along with a Splunk Fundamentals training which requires me to upload a few files (csv, linu... by akhan94 New Member in Splunk Search 03-11-2021 0 1	0	1
issue in regex Hi ,i want to ignore some comment line and last comment store value in field.for example , I have log where first ... by pragycho Loves-to-Learn in Splunk Search 03-11-2021 0 2	0	2
rex for raw text that have "" in Hello, I'm have a raw data that contain the following:....OrgnlTxRef:"04172D1xxxx","TxSts":"ACSC","StsRsnInt":{....I'... by phamxuantung Communicator in Splunk Search 03-10-2021 0 3	0	3
Regular expression to extract http status I have http statuses that come in from 2 different indexes, with almost the same event but the event from one indexer... by thenormalone Path Finder in Splunk Search 03-10-2021 0 3	0	3
How do I make a rolling weekly percentage? I'm new to splunk, but I need to figure out how to count the number of error codes of a certain type over a rolling 7... by altinCamp New Member in Splunk Search 03-10-2021 0 1	0	1
Disk Space Monitoring in Splunk ITSI and CPU & memory corelation Question, we are trying to monitor disk space usage in Splunk ITSI.We are trying to use templates as much as possible... by RomeSplunk123 Explorer in Splunk Search 03-10-2021 0 1	0	1
Splunk CLI search ignores limits I notice, by testing, that Splunk CLI searches do not appear to be subject to Splunk's limits.This behavior is useful... by jonaclough Path Finder in Splunk Search 03-10-2021 0 0	0	0