Splunk Search

Community Activity

searching for multiple destination ports I have a search query for:dest_port=4402 I want to include 4404. what would the syntax for dest_port look like? by allenhau Engager in Splunk Search 09-23-2020 0 2	0	2
splunk predict period limit 2000 ?? Dear All expert ~we have some data that every 5 minutes generated. and we want to predict it , we need to use the sea... by wt0217 New Member in Splunk Search 09-23-2020 0 0	0	0
Windows Servers - High CPU usuage of process that is greater than 90 Hi Team,I wanted to set up alert in Splunk cloud for windows machines when CPU% of a single process is greater than 9... by Supriya Path Finder in Splunk Search 09-23-2020 1 2	1	2
Splunk rest api , if hostname matched Hi,I try to if saved search result hostname is matched, reload deploy-server with rest API. But When saved search run... by burakatabay Path Finder in Splunk Search 09-23-2020 1 2	1	2
How to create a table which matches a lookup file and fields created at search time? Hi All I am trying to create a search which will give me an output similar to below Index Server Name Application... by aparnaa Path Finder in Splunk Search 09-23-2020 0 5	0	5
How can I force a timechart to snap to the end of the week rather than beginning? I have a very simple search to count the amount of emails delivered by week and display this in a timechart over the ... by andimnf Explorer in Splunk Search 09-23-2020 0 3	0	3
Splunk Add-on for microsoft cloud services not getting loaded in splunk cloud instance. I installed Splunk Add-on for microsoft cloud services in splunk cloud. I am splunk cloud admin. When I installed App... by sang New Member in Splunk Search 09-23-2020 0 0	0	0
how to ignore a column using addtotals/addcoltotals Here is my search index="aries" splunk tt=HL7* \| chart count by si , tt \| addtotals \| addcoltotals\| rename si as G... by mjhamm75 New Member in Splunk Search 09-23-2020 0 3	0	3
上位XX位とその他の合計値の集計についてお世話になります。集計のサーチ文の書き方についてご教示ください。やりたいことは下記の通りです。・販売数で集計し、Top3を出力する。・その他は合計して集計する。・販売数で集計した結果に、商品名をキーとして割引販売数の集計値をマージする... by clio706 Explorer in Splunk Search 09-23-2020 0 2	0	2
How to get a logging hours report of the employee in splunk Hi Community,I Need to find the login hours of the user/employee. Did we see those results in splunk...? Please help ... by mputtam Path Finder in Splunk Search 09-23-2020 1 6	1	6
Curl command error - b"/bin/sh: -c: line 1: syntax error near unexpected token `?P'\n/bin/sh: When im trying to pull data using Curl on my mac for command :' curl -s -ku admin:admin -o ?Users/Vivek/Desktop/09012... by kumarviv Explorer in Splunk Search 09-23-2020 1 4	1	4
Splunk query find percent of Indexes and hosts used in last 24 hours. Please help me with splunk query to find below 2 things.1. To find percent to events/logs utilized by differents Inde... by alexspunkshell Contributor in Splunk Search 09-23-2020 1 1	1	1
fit command in MLTK detecting categorial outliers Hi,I tried the below query to fit my model,sourcetype=files command="cmd.exe" earliest=-90d@d latest=-1d@d\|stats co... by Janani_Krish Path Finder in Splunk Search 09-23-2020 1 5	1	5
Upgrading Splunk as root modified file system using tar.gz Hello,looks like upgrading Splunk as root modified our file system using tar.gz, is this normal behaviour? [root@xhos... by splunkreal Influencer in Splunk Search 09-23-2020 0 1	0	1
Scheduling the training set in MLTK Hello,I have used OneClassSVM algorithm for anomaly detection and after applying fit command I have a training data s... by Janani_Krish Path Finder in Splunk Search 09-23-2020 1 0	1	0
Using three events without common fields to get list of IDs Hi all,I'm trying to figure out how to get my hands on a list of IDs which are determined by referring to three event... by RyanJWilliams Engager in Splunk Search 09-22-2020 0 2	0	2
Conditional cell format without JS? Hi, I would like to color the cells from a column table depending on their time valueis it possible to be done withou... by anonuser Explorer in Splunk Search 09-22-2020 1 2	1	2
Getting alerts on sudden increase in traffic. I have a custom script that collects stats on a custom HW appliance every minute and forwards it to our splunk system... by vantoryc Explorer in Splunk Search 09-22-2020 0 3	0	3
Need results exact URL mentioned in macros i am using macros for this urls here i have urls like /accountinformationview/AccountInformationView/emailsubscriptio... by vikram1583 Explorer in Splunk Search 09-22-2020 0 1	0	1
finding percentage Good Day all, I would like to find the percentage of devices that has updated. The way I would like to do this is to ... by rabrahaham Engager in Splunk Search 09-22-2020 0 1	0	1
Search within dynamic list of items I have an item to search withing logs with the schema similar to one below. It is kind of searching for certain uri ... by splkuser20 Loves-to-Learn in Splunk Search 09-22-2020 0 2	0	2
Why is my search on JSON data producing duplicate results for each line, except for the date and time? Hi guys, I have a problem. Every time I try to run the following search, the result is duplicated in each line, but ... by rafamss Contributor in Splunk Search 09-22-2020 0 6	0	6
How to find the missing number sequence from a table? For eg: i am having the following table after search in splunk IDS Time 1 30 3 ... by rajeswarir New Member in Splunk Search 09-22-2020 0 7	0	7
splunk concatenate field in table Hi,As newcomer to splunk , i have the following ironport log :<38>Sep 22 02:15:35 mail_logs: Info: Message finished M... by silverem78 Engager in Splunk Search 09-22-2020 0 12	0	12
Convert Multivalue field into Number Hey there,I have extracted chart data from the raw field into multivalue fields. But I can't chart the data since spl... by matthaeus Explorer in Splunk Search 09-22-2020 0 9	0	9