Splunk Search

Community Activity

Alpha based y axis Hello I'm new to splunk and was wondering if there is a way where the values on the y axis can be non numeric.I'm try... by koreanfather Observer in Splunk Search 07-16-2020 0 3	0	3
XML with namespace Parsing I have a filed with xml as below, can some onehelp me how can parse out ErrorDescription"<?xml version="1.0" encoding... by durgave Engager in Splunk Search 07-16-2020 0 1	0	1
Syntax highlighting for Splunk code [in editor on Answers] Why do you not support syntax highlighting for SPL in the Code Sample widget here on Answers? You do it in the main ... by pm771 Communicator in Splunk Search 07-16-2020 1 1	1	1
How to pass indexes from a macro to another search Hello experts,I am using makeresults command to create a macro like below:\| `get_indexes_by_args(1)`And the macro wil... by thinhdinh Path Finder in Splunk Search 07-16-2020 0 6	0	6
Multiple uses of the same lookup table - how to simplify? I have a stream of events that have names and each name belongs to a certain category.For this example, it will be tw... by pm771 Communicator in Splunk Search 07-16-2020 0 1	0	1
Splunk Search Heads in infinite loop of refreshing We had one search head have to be rebuilt because of JAVA issues. We had another search head, due to a network switc... by dkrichards16 Path Finder in Splunk Search 07-16-2020 0 0	0	0
Searchquery error Hi, While I'm running splunk for a search for timeperiod = 1year.I always getting this error[xxxxindexernamexxxx] F... by Reethika Path Finder in Splunk Search 07-16-2020 0 1	0	1
Search events based on lookup field and display lookup row even if nothing found I have a lookup file which contains a list of jobnames, description and their SLAs.Example: jobNameDescriptionSLAjob1... by nomad1981 Explorer in Splunk Search 07-16-2020 0 6	0	6
eval query Hello All,I'm displaying Failures and Delays of some processes running daily, i need to make a dashboard where i have... by geekygaurav Observer in Splunk Search 07-16-2020 0 1	0	1
Need help to combine inputlookup and map search for two sources Team, Need help to build a dashboard .WH.csv contentXXXYYYI want to search in two different sources but wanna use the... by kiragsplunk Explorer in Splunk Search 07-16-2020 0 10	0	10
loops and lookup These are few requirements. (I am splunk beginner Please help me)Plot out devices that degrade over time using specif... by sanjeev Explorer in Splunk Search 07-16-2020 0 0	0	0
how to calculate time delta how to calculate the device’s uptime value e.g time delta means time between (uptime < 1800) up to next (uptime < 18... by sanjeev Explorer in Splunk Search 07-16-2020 0 5	0	5
Calculate time difference between multivalue fields Hi , I have a data from search in below formatName provider1IN provider1OUT provi... by ayush1234 New Member in Splunk Search 07-16-2020 0 5	0	5
Time part is discarding I have a timestamp variable EmailSendAt=2020-07-15 05:52:13.186 , Whenever I am usingstats value(EmailSendAt) as tim... by sheshanath Loves-to-Learn Lots in Splunk Search 07-16-2020 0 3	0	3
COM Component monitoring in windows server How to COM+ components of windows server in splunk? by Ajay Observer in Splunk Search 07-16-2020 0 0	0	0
Windows Server Up time How to know/search windows server uptime? by Ajay Observer in Splunk Search 07-16-2020 0 0	0	0
Help with creating an index search based on the _time value (beginner) Beginner here, I'm trying to run a search on unique logins for a web-based application. The current logs, however, do... by Bassik Path Finder in Splunk Search 07-16-2020 0 28	0	28
Datamodel summariesonly Why are we seeing logs from year ago even we use sumarriesonly=t\| tstats summariesonly=t earliest(_time) as Earliest... by jadengoho Builder in Splunk Search 07-15-2020 0 0	0	0
Splunk Search String Hi! I'm new to splunk, I'm just learning it now because I need to understand the splunk search string given to me by ... by Deniserity Engager in Splunk Search 07-15-2020 0 2	0	2
Display only few sentences and show all with arrorw when you click Hi Splunkers, my search is like that and it makes table with data and error message. But error message includes like... by summerura Explorer in Splunk Search 07-15-2020 0 3	0	3
Need to change the _time to log event time Hi ,I need to replace value of _time with special extracted log time event. I am using this search but its not workin... by rashi83 Path Finder in Splunk Search 07-15-2020 0 2	0	2
Splunk - Alerting if ip address/ url changed over last 24 hours Hi Guys,I am trying find changes in office 365 ip address and URL using SPL by comparing results from today to yester... by asahni Loves-to-Learn in Splunk Search 07-15-2020 0 0	0	0
How to create a Splunk alert upon any new table entry Hi. I have a splunk table which tracks all the plugin version available to install for each plugin. Please note that... by rsantkumar Observer in Splunk Search 07-15-2020 0 3	0	3
Using TimeWrap for specific time window. Hello Everyone, I am trying to count the events for the window 8PM(Day1) to 6AM(Day2) for last 3 days so that I can ... by rajatsinghbagga Explorer in Splunk Search 07-15-2020 0 1	0	1
Passing Value from Subsearch to Parent Search I am fairly new to Splunk and only have the basics under my belt at best. I'm having trouble proving out the followin... by jstocker New Member in Splunk Search 07-15-2020 0 2	0	2