Splunk Search

Community Activity

	Compare search results to CSV values Hi all! I have been trying to compare a search with a CSV lookup table. So far no luck... The list contains only 1 co... by Sasquatchatmars Communicator in Splunk Search 09-30-2020 0 4	0	4
	How to count valid and invalid requests at the same time? Hello,I want to display the total count of events and failed events count. In my case, it is determined by the field ... by vamshiverma Explorer in Splunk Search 09-30-2020 0 10	0	10
	Delete rows in a CSV lookup file Hi all,I have succesfully made a search to populate a CSV file thanks to @gcusello , this file lets me add Usernames ... by Sasquatchatmars Communicator in Splunk Search 09-30-2020 0 10	0	10
	How to append two columns from different data inputs based on time I have data in below format Data Input 1 : index=abcTime (YYYY-MM-DD HH24)Count12020-09-30 00102020-09-30 01202020-0... by pahujadeep Explorer in Splunk Search 09-30-2020 0 1	0	1
	How to search on another index based on the first search condition? Hi, i am trying to do a search which can shows which internal client accessed the web but i have a proxy to access th... by TrAnS Loves-to-Learn in Splunk Search 09-29-2020 0 1	0	1
	Listing out dates and appending to search?? I'm trying to list out all dates between my time picker and have that as a column in my table. I do both things indiv... by tb5821 Communicator in Splunk Search 09-29-2020 0 4	0	4
	Find set of 'problem' events, then map to all events from the 'problem' requests based on requestID I have a web application where each incoming request is given a unique requestID so we can see all the logs for that ... by nfdavenport Observer in Splunk Search 09-29-2020 0 2	0	2
	changing `host` and persisting the result I am trying to make this query work: index="main" \| eval host=asset_id \| collect index="scanned_app" where asset_id i... by mushkevych Explorer in Splunk Search 09-29-2020 0 11	0	11
	Running a custom command via cli Hello All,We created a custom search on splunk which calculates a specific metric on all the servers that are part of... by rabrahaham Engager in Splunk Search 09-29-2020 0 1	0	1
	query error tstat Hi when i ran this query: "\| tstats count, values(\"Authentication.tag\") as tag from datamodel=Authentication where... by havatz Explorer in Splunk Search 09-29-2020 0 2	0	2
	Universal Forwarder functionality Hi! I'm searching for an appropriate agent to transmit Windows Event log to syslog server. Can Universal Forwarder co... by kevinsteeee Explorer in Splunk Search 09-29-2020 0 2	0	2
	Compare the values from two fields ( one is from a lookup) Hi all Trying to build a query and struggling in "comparing" two fields. Essentially this is what i am trying to do 1... by ng87 Path Finder in Splunk Search 09-29-2020 0 3	0	3
	How to manage accelerated datamodels in cluster ? Hello,We are planning to migrate single instance splunk installation to clustered deployment (1 MasterNode, 1 Search ... by AKG1_old1 Builder in Splunk Search 09-29-2020 0 1	0	1
	How to sum 2 percent ? Hi,I have a table like that : namepercentAAA90BBB6070 I want to group the BBB percent in one percent.How I can do thi... by mah Builder in Splunk Search 09-29-2020 0 3	0	3
	LOOKUP and NULL values Hello, I am new-ish to Splunk and had a question regarding the use of a lookup table and wanting to include all value... by shelleysm Loves-to-Learn in Splunk Search 09-29-2020 0 1	0	1
	New rows for each of the Extracted values from a multi-valued field Hello Everyone!Currently the result of my query is below:Input:id URL101 ... by kiru2992 Path Finder in Splunk Search 09-29-2020 0 12	0	12
	Spread a value over a variable duration I have several events that are structured like this:2020-09-28T15:18:40Z duration=8.0 somevalue=42 otherfield=A2020-0... by enenkey Loves-to-Learn in Splunk Search 09-29-2020 0 3	0	3
	How to group values of the same field and display timechart counts for each group month over month? I first need to group values of the same field... Group1 (values match A1, A2, A3,...) Group2 (values match B1, B2, ... by tmaltizo Path Finder in Splunk Search 09-29-2020 0 6	0	6
	hi team need to fetch the from the given files using operator >= I have got a field Vulnerability ages, which are having now in days like 120days,110, days,30days,45daysI need to fet... by shoyeb Observer in Splunk Search 09-29-2020 0 1	0	1
	To get IP counts by no of occurence I have a query which can give DIfferent IPS that are hitting to the top URI's source= some source 404 \| stats count v... by naval1992 Engager in Splunk Search 09-29-2020 0 3	0	3
	How to add a color to the field in one column based on the other column filed values Hi,How can I add a color to the field in one column based on the other column filed values? The example below, I need... by msr New Member in Splunk Search 09-29-2020 0 1	0	1
	How to convert this time format with strptime()? I haven't found something for this time format in the docs:Mon Sep 28 00:00:00 GMT 2020How can I convert this with st... by Sundried Explorer in Splunk Search 09-28-2020 0 2	0	2
	Subsearch and Join(?) for VPN+Azure+O365 correlation I'm trying to look at all of our users using personal VPN who have accessed O365 (Sharepoint, OneDrive, etc.) from th... by fdevera Path Finder in Splunk Search 09-28-2020 0 4	0	4
	Stats count for multiple fields in search I have a query that has multiple states represented in each log event how do i get stats based on the state values my... by rockybhai Loves-to-Learn Lots in Splunk Search 09-28-2020 0 3	0	3
	30 Minute Interval Search Hello,I'd like my search to return 30 min interval searches between 9/24/2020 20:00 and the current date; what's the ... by itsmevic Communicator in Splunk Search 09-28-2020 0 1	0	1