Splunk Search

Discussions

Thread Info

Percent matching events

I have a search that find a match of events this counts all events that match the string index=data-kia-cer-app-...

by Explorer in

Show event count from two different times

HI I am pretty new to Splunk and had a question about showing event counts from last 7 days and first time was event ...

by New Member in

How to use streamstats to evaluate events from different sourcetypes?

Background: I'm trying to create a monthly report that tracks how many terminals we Add and how many terminals we Re...

by Path Finder in

Splunk Web UI - Getting "Cannot get username when all users are selected" along with some web elements not loading

Hi, We have setup our Splunk cluster, version 7.3.3 in AWS and seeing that on logging into splunk UI, some of the w...

by Path Finder in

Join fields with partly matching

Hi All, I have query below that needs to modified for sub string matching condition - splunk query: so...

by Explorer in

How to get a column chart to show count between two dates??

Hi everyone, hope u r all doing good. So i have a query i am not able to figure out.I need to sho...

by Explorer in

How to optimize the search with join command

Hi, I have a query where I need to join it by a lookup to match the records. This is horribly slow and could be becau...

by Path Finder in

Search against lookup table with both CIDR and regular addresses

I have a lookup table consisting of both CIDR addresses and regular x.x.x.x addresses under the field named "IP_Addre...

by Path Finder in

How to count data from different time and use it in the same chart?

Hi all, Can someone help me on this problem? I'm working on a dashboard that I need to show how many users log...

by Loves-to-Learn in

I lost all my account history and am unable to link to my old account since upgrade..

Hi, Since the new site I lost my old Splunk answers account. Or when I logged in there was no Splunk answers us...

by Engager in

Map command - How to make different searches in different indexes ?

Hello, I am currently trying to relate "front" logs to "back" logs depending on their sessionIds and their timesta...

by Engager in

Compare words in a string against all other words in another string

Hi there, I'm new to Splunk, but I've been making some progress. I'm trying to compare traffic going from one ...

by New Member in

Concat 2 input file and apply on date search

Hello, I have 2 input fields like :time_val: 1 (any number)(dropdown)time_span: Hour/Day/Month (value:[h,d@d,@w0...

by New Member in

how to get both values after finding duplicate

Hi I'm trying to find duplicate values of a field by using below query. index = internal source type="*" Space="...

by Communicator in

how to execute multiple saved searches

Hi, I am currently using a scheduled search (or master search) that uses the Splunk REST API to get a list of speci...

by Path Finder in

Remove duplicate rows based on condition

testName values 'VerifyBtagsTest' and 'Test_AcceptTAndCModal' values occurred 2 times wanted to take the latest exec...

by Engager in

Get domain name from urls

Hello, I'm trying get the domain name alone from any given urls. Please see the list of url formats i'm dealing wit...

by Engager in

How do you search results produced from a timechart...by command?

I have a query similar to below: ... | timechart span=30s count by host resulting in output that looks like: ...

by Explorer in

Get number of occurrences of an event in a period over a larger period

I would like to search for two consecutive ocurrences of an event (separated let's say 1 minute appart). I don't care...

by New Member in

Join query with common fields from different logs

Hello everyone, I need to find common fields from two different logs. After finding common fields I need to extract...

by Observer in

How to pass parameters in custom search command without field camp?

How can i run a search command passing an argument to python script via sys.argv? My script: import request...

by Engager in

how to pass arguments in custom search command

Hi, I am trying to write a script in which i can pass arguments from search bar. My basic script $cat mytest.sh pr...

by Contributor in

Need help with REX, PLEASE

Hello, I am new to using REX wich is I believe is what I need. I have a field that has data that looks like this...10...

by Explorer in

How to search data which is not present in the last 60 days

Hi experts, I have a multiple errors like "***error occured" , "failed error **** " and etc, I need to check what ...

by Path Finder in

Search to find the total number of ALL searches across the deployment in 24h

Hi there, Any thoughts on how I can get a list/count of all searches, both saved/ad-hoc etc that run on all servers...

by Builder in

Get Updates on the Splunk Community!

Splunk Search

Discussions

Percent matching events

Show event count from two different times

How to use streamstats to evaluate events from different sourcetypes?

Splunk Web UI - Getting "Cannot get username when all users are selected" along with some web elements not loading

Join fields with partly matching

How to get a column chart to show count between two dates??

How to optimize the search with join command

Search against lookup table with both CIDR and regular addresses

How to count data from different time and use it in the same chart?

I lost all my account history and am unable to link to my old account since upgrade..

Map command - How to make different searches in different indexes ?

Compare words in a string against all other words in another string

Concat 2 input file and apply on date search

how to get both values after finding duplicate

how to execute multiple saved searches

Remove duplicate rows based on condition

Get domain name from urls

How do you search results produced from a timechart...by command?

Get number of occurrences of an event in a period over a larger period

Join query with common fields from different logs

How to pass parameters in custom search command without field camp?

how to pass arguments in custom search command

Need help with REX, PLEASE

How to search data which is not present in the last 60 days

Search to find the total number of ALL searches across the deployment in 24h

Building Reliable Asset and Identity Frameworks in Splunk ES

Cloud Monitoring Console - Unlocking Greater Visibility in SVC Usage Reporting

Automatic Discovery Part 3: Practical Use Cases

How can i export a list of all services in APM

Splunk Answers Content Calendar May 2025!

MLTKC how should i check jupyter notebook func in ...

ITSI thresholds: adaptive vs static

Using Machine Learning Toolkit to detect auth abus...

Splunk Search

Are you a member of the Splunk Community?

Discussions