Splunk Search

Community Activity

How to get an epoch time for $client_time.latest$ Hi,I have a dashboard with a dropdown form allowing users to select the time period they wish to analyse.I am looking... by trapper_dave Engager in Splunk Search 02-23-2021 0 3	0	3
Extract Field with Backslash and Quotes I'm trying to extract this field that has colon, backslash and quotes around it and its not yielding any result.Field... by ank15july96 Engager in Splunk Search 02-22-2021 0 5	0	5
Using two lookup tables in one query I am trying to create an alert that will utilize a search with data from two lookups. Basically, I want to:Take/retur... by bp32795 New Member in Splunk Search 02-22-2021 0 1	0	1
Memory usage I need a query to find Memory usage more than 90 percent by hostnameis it a good idea to do in splunk vs app dynamics by Murlivelage New Member in Splunk Search 02-22-2021 0 1	0	1
How to combine two queries into one? I have two query that is exact same except the use of the lookup for each search. The one query includes data from a ... by dwibedi03 Explorer in Splunk Search 02-22-2021 0 2	0	2
REST API: DBX: Specify time range Need to run a dbxquery command via the REST API, and having trouble defining the search's time range in that context.... by mxanareckless Path Finder in Splunk Search 02-22-2021 0 3	0	3
dnsrequest url or query help Hi Splunk community,I am trying to determine the impact of removing Adobe Flash from our environment.I have done basi... by tod_s New Member in Splunk Search 02-22-2021 0 3	0	3
foreach and subsearch values I am using a table of results a \| b \| c \| search \| d \| e ======================================... by splunk_new1 Explorer in Splunk Search 02-22-2021 0 2	0	2
Bandwidth usage from Firewall I'm looking to create a bandwidth chart showing the bandwidth traffic our firewall over a time period and converting ... by jparrenas26 Engager in Splunk Search 02-22-2021 0 6	0	6
Disable default sorting behavior Context: existing Splunk installation I'm working with is not very robust when handling search requests due to sheer ... by avshabanov New Member in Splunk Search 02-22-2021 0 1	0	1
Removing Single Fields From a List of Maps Hi,I have an event json similar to:{"stages":[{"duration":12,"status":"Success","children":[{"test":"integration","re... by steeleverint Engager in Splunk Search 02-22-2021 0 2	0	2
Proper execution of subsearch help So here is my existing query as it runs nowsourcetype=snort[search sourcetype=snort \|top limit=20 src\| table src]\| st... by kelie Path Finder in Splunk Search 02-22-2021 0 4	0	4
Multiple Timecharts by a field in single search I wanted to create multiple timecharts in a single search. The scenario i am stuck in is something like this :index =... by nagpalga Engager in Splunk Search 02-22-2021 1 5	1	5
Cataloging Report Notification Actions I am looking to catalog which reports/alerts utilize which notification actions. I have a search currently that keys ... by deaseec Engager in Splunk Search 02-22-2021 0 2	0	2
event firing before the user ever makes a change to the form input? Hi all, hope all is well!I'm unsetting a token in the <change> block of a <query>. However, I'm finding that the <uns... by tonymaibox New Member in Splunk Search 02-22-2021 0 2	0	2
How to enable the Lookup Updater in canary app By upgrading to splunk v8.0.5, I can no longer use the lookup updater that was previously possible with Sideview Admi... by saeko18 New Member in Splunk Search 02-22-2021 0 0	0	0
Splunk split events to extract text I have multiple events in Splunk like below :Exception:100 : *** Error 3006 Logons are disabled., Job=ABCException:XY... by ppatkar Path Finder in Splunk Search 02-22-2021 0 4	0	4
Filtering events where extracted field is not in the lookup file Hello, I am extracting a lot of values during search (using eval & split as recommended here), one of them being `use... by LegalPrime Path Finder in Splunk Search 02-22-2021 0 1	0	1
table with custom width for column I have around 15 columns in table , where i want to have fixed column width for 3columns with 30px and other remainin... by DataOrg Builder in Splunk Search 02-22-2021 0 2	0	2
foreach and subsearch I am using a table of results a \| b \| c \| search \| d \| e ======================================... by splunk_new1 Explorer in Splunk Search 02-22-2021 1 2	1	2
Number of events not stable in time Hello, I wonder if you have any suggestion as to why, over time, results of a stats count may vary for a past time fr... by emallinger Communicator in Splunk Search 02-22-2021 0 1	0	1
Help with table results Hi Splunk community,I am trying to determine the impact of removing Adobe Flash from our environment.I have done basi... by tod_s New Member in Splunk Search 02-22-2021 0 4	0	4
how to remove duplicates in appended queries I used the below query, here some applications are like appname and some like appname.application. So I added app1... by rkishoreqa Communicator in Splunk Search 02-22-2021 0 5	0	5
Geolocation Issue: 1 datamodel, 2 queries, 2 different results The problem: when running two different queries, within one data model that utilize a geo ip lookup and query the ex... by frog22 Explorer in Splunk Search 02-21-2021 0 3	0	3
How to count specific data separated by pipe character ? Hi,I have below data and would like to get count by country code. Is it possible to get it ?\|21/02/2021 12:36:29.048\|... by Linnie25 New Member in Splunk Search 02-21-2021 0 4	0	4