Splunk Search

Community Activity

Raw Logs Hi ,How do I fetch the raw logs for the source type :wms_oracle_sessions?Query:index=main sourcetype=wms_oracle_sessi... by rahul2gupta Path Finder in Splunk Search 09-27-2020 0 5	0	5
Finding the ratio between fields in different events I have the a search (picture below) which is calculating the open option interest on several ticker symbols. I was ... by minikatz Engager in Splunk Search 09-27-2020 0 2	0	2
Extracting names from fields Hi, I am trying to extract name of the individuals from the field that I have in the data. For example from the data ... by Rgk_Trail Explorer in Splunk Search 09-26-2020 0 10	0	10
Eval field based on similar events or single event i have a case where i need to determine if a row has been repeated multiple times or not .it may have 4 common value... by jiaqya Builder in Splunk Search 09-26-2020 0 8	0	8
How to get latest time from an index's subsearch When i run this query it seems to run just fine as an adhoc search but when i schedule it, it throws the following er... by aa70627 Communicator in Splunk Search 09-25-2020 1 2	1	2
Assigning a field value to "Earliest" "Latest" time modifiers Hello, I am interested in making the results of one index search (in particular the values of fields early and late) ... by epw0rrell Path Finder in Splunk Search 09-25-2020 0 4	0	4
How to group by field and calculate Error rate ? Hello,I'm trying to determine the Error rate for individual servicename . I'm having trouble while performing group b... by vamshiverma Explorer in Splunk Search 09-25-2020 0 3	0	3
Combined Linux Searches Hello ,Im trying to run a audit search for high priority linux servers - should have the following in the searchsudo ... by gm3ndez New Member in Splunk Search 09-25-2020 0 1	0	1
Failed to parse a JSON string Hi I get data from an CSV file and one of the filed imported is a JSON string called "Tags" which looks like thatTags... by erwanlebaron Engager in Splunk Search 09-25-2020 0 1	0	1
JIRA add-on not ingesting historical data Hi,I am using jira add-on available in splunk base app-1438 to ingest events from JIRA cloud instance to splunk . How... by sumeetsirohi01 New Member in Splunk Search 09-25-2020 0 1	0	1
combine two evals in to a single case statement I have 1600+ storage arrays and they are from multiple vendors, each with different thin provisioning levels. I curre... by codedtech Path Finder in Splunk Search 09-25-2020 0 3	0	3
How to create a lookup table I'm new to Splunk and was wondering how to do a lookup table. So what i'm trying to get is something like a lookup o... by ngox0061 Explorer in Splunk Search 09-25-2020 1 6	1	6
rex help Hello,index=myindex\| spath "Rules{}" output=rules \|mvexpand rules \| table device ip rulesNow my rules has data like b... by surekhasplunk Communicator in Splunk Search 09-25-2020 1 5	1	5
rex help I am using a query below which gives me rules fieldindex=myindex\| spath "Rules{}" output=rules \|mvexpand rules \| tabl... by surekhasplunk Communicator in Splunk Search 09-25-2020 0 1	0	1
How to create a report that appends the data of every past month in the excel before sending Hi,I want to create a report through splunk that will send out an email consisting data of each months stats by auto ... by ak9092 Path Finder in Splunk Search 09-25-2020 0 6	0	6
Timechart on a rate calculated by 2 sourcetype (monthly) Hi all,I have a problem creating a time chart based on calculations of 2 values from different source-type. Let me pu... by tabbit2002 Observer in Splunk Search 09-24-2020 0 3	0	3
How to use lookup function for fuzzy matching Sorry, my English is not very good. I extracted a field named "user-agent", I also have a CSV file, the specific con... by xsstest Communicator in Splunk Search 09-24-2020 0 3	0	3
Using single column Holiday table how do I determine whether today is a holiday? I have a lookup CSV table that lists dates of holidays in a single column.HolidayTable.csv:HDate1/1/2020................ by pm771 Communicator in Splunk Search 09-24-2020 0 3	0	3
Comparing with NULL Do I understand correctly that NULL is neither equal (==) nor not equal (!=) to any value? I know about isnull() func... by pm771 Communicator in Splunk Search 09-24-2020 1 2	1	2
Timechart filldown I have a dashboard search which ends with a timechart like this \| eval VUser=if(isnotnull(Stop_time),0,VUser)\| timec... by perrinj2 Path Finder in Splunk Search 09-24-2020 0 2	0	2
How to compare list with lookup? Hi all, I'm trying to compare list of apps by server with a list of apps in lookup to find if its installed or not. I... by knalla Path Finder in Splunk Search 09-24-2020 1 1	1	1
Percentile 25 and Percentile 75 provides different result while using streamstats and stats Hello,I have 3 values 15,26,18. Now assume my 18 is my latest value and i want to find p25 and p75 including the late... by Kirantcs Path Finder in Splunk Search 09-24-2020 0 3	0	3
Renaming the 'range' field from rangemap I have a search that reads a value 0-10. I use a rangemap command to insert custom icons in toa table based on the wh... by zd00191 Communicator in Splunk Search 09-24-2020 1 10	1	10
Sniffing Ports Up/Down -- IFconfig? Looking for a way to monitor sniffing ports on a sensor. Each port is tied to a different part of the system and wou... by ddecker03 Loves-to-Learn Everything in Splunk Search 09-24-2020 0 1	0	1
Total count per week Guys, i need to create a table with 3 columns that shows me the total of produtcs per week. Like: Produtcs Tota... by justeso1 Loves-to-Learn Everything in Splunk Search 09-24-2020 0 1	0	1