Splunk Search

Community Activity

Subtracting column when column name are dynamic Hello World.I have a splunk search which results in the below table... Col1Col2Col3Col4Row1XXXXRow2XXXXRow3XXXX My ne... by kiamyash Engager in Splunk Search 07-28-2020 1 1	1	1
Lookup searches and regex? Hi guys,New to Splunk so pardon the simplicity of my question!Im trying to bounce my csv list off another one. I've a... by klaudiac Path Finder in Splunk Search 07-28-2020 0 2	0	2
Use another index as lookup So I'm trying to enrich one search, by pulling fields from another index, they have a matching pair of fields Serialn... by arrowecssupport Communicator in Splunk Search 07-28-2020 0 9	0	9
How can I join unique fields from 2 different sourcetypes to one column and its values to 2 different columns? Hi, I am trying to create a table from 2 different sourcetypes. Fields in both source types are same but has differen... by vijay_datla Loves-to-Learn Lots in Splunk Search 07-28-2020 0 11	0	11
Why are exclusions using lookup failing? I'm looking signatures in snort but I want to exclude some of the signature IDs by using inputlookup, but it doesn't ... by rgarcia Engager in Splunk Search 07-27-2020 0 12	0	12
Extract from URL Hi, I have following kind of url :https://abc.com/loc/country/123/isshttps://abc.com/a1/v1/country/456.json?returnFie... by smahuja Explorer in Splunk Search 07-27-2020 0 1	0	1
Custom alert webhook validation I have a custom webhook which allows user to enter multiple inputs.Eg:NAMEIDNODEI want to validate the entered input ... by joydeep741 Path Finder in Splunk Search 07-27-2020 0 0	0	0
Display result=0 rather than "No Results Found" Hi All,I'm using a query to get the total total count of a field ( different error messages ) .Here is the search an... by dpdwibedy Explorer in Splunk Search 07-27-2020 0 2	0	2
Why are fields returning true for both isNum() and isStr() ? Hi, I want to setup a search to alarm me if a field ever changes its nature. To play around, I chose the year field ... by rolaso Explorer in Splunk Search 07-27-2020 0 5	0	5
Correlate multiple events, extract fields, output to table Hi everyone, I'm trying to correlate some events that have same field and then to output the results to a table.Examp... by iulianbadea Engager in Splunk Search 07-27-2020 0 11	0	11
Why does the case statement works until an AND is added to it? When I have this case statement like this, it "works". It runs and puts values in the iSeries column, but they are wr... by azvargas Loves-to-Learn in Splunk Search 07-27-2020 0 9	0	9
How to convert a number into a Date? Hello, Folks. I have a field that represents a date but in this format (YY/MM/DD).For example: on 07/23/20 the field... by mattheuslima Explorer in Splunk Search 07-27-2020 0 5	0	5
How do i create new field with last day of reporting period to my search? I have a report which runs every week on Monday , I'm using earliest and latest time in my search . Now I wanted to ... by iamsplunker Communicator in Splunk Search 07-27-2020 0 6	0	6
How to convert numeric values to decimal numbers? I have a field called Availability and the field values are like 98.32 % and I want them to be converted as decimal n... by iamsplunker Communicator in Splunk Search 07-27-2020 0 3	0	3
Calculating throughput In splunk logs, I have to monitor some specific events. The identifier I use to target for those events is a text 'EV... by ghildiya Explorer in Splunk Search 07-27-2020 0 5	0	5
Describing fields Brand new to Splunk and curious whether there is a way to add descriptive text to the pop out window that appears whe... by CarbonCriterium Path Finder in Splunk Search 07-27-2020 0 1	0	1
How can I join these two tstats searches The searches look like this in their base form \| tstats count where index=nix_os earliest=07/10/2020:00:00:00 latest=... by tkw03 Communicator in Splunk Search 07-27-2020 0 1	0	1
How to match the host in host.csv with the field in test.csv? hi I need tio match the host there is in host.csv with the field there is in test.csv but i dont succeed could you he... by jip31 Motivator in Splunk Search 07-27-2020 0 6	0	6
How to get sum of all the results Hi All,I'm using a query to get the total total count of a filed ( different error messages ) .Here is the search an... by dpdwibedy Explorer in Splunk Search 07-27-2020 0 4	0	4
Calculate number of days (exclude weekends) between 2 dates? Hi everyone, I want to calculate the number of days (exclude weekends) between 2 days with the same format of datetim... by dominhthe110 Explorer in Splunk Search 07-27-2020 0 4	0	4
overall disk usage HI,I'm trying to create a graph for overall disk usage for few linux servers. I'm getting the free percentage of in... by Anu Path Finder in Splunk Search 07-27-2020 0 0	0	0
Need help with Splunk Query Hi All.I need help with Splunk Query for below scenario:I need to show the status of my cronjob in below format.Start... by nilbak1 Communicator in Splunk Search 07-27-2020 0 4	0	4
A database error occurred: ORA-00942: table or view does not exist. Hi All, When I am trying to run the following search in splunk: \|dbquery wmsqlprd "select REC_TYPE, CODE_TYPE, CODE_D... by rahul2gupta Path Finder in Splunk Search 07-26-2020 0 2	0	2
Unable to extract the field: 'Select Sample Event' fails I have a query which is able to fetch me the results. I want to extract the fields from raw data. So I click on 'Ext... by ghildiya Explorer in Splunk Search 07-26-2020 0 0	0	0
Finding duration for particular day if user did not disconnect session Hello,How can I find the duration to check the actual active hours of a user for a perticular day if the VPN session ... by himpawar Observer in Splunk Search 07-26-2020 0 0	0	0