Splunk Search

Discussions

Thread Info

Extract New Field - First x characters

Hi, I want to create a new field which will simply pull out the first x number of characters from a line on an event ...

by Explorer in

Unable to extract two different pattern strings by rex command

{"timestamp":"2021-02-24T00:00:46.533+00:00","message":"Snapshot event published: SnapshotEvent(status=CREATED, versi...

by New Member in

Splunk Cloud Rest Api Python

Hi there, i'am quite new to Splunk, I read a lot of documentation and examples of "How to search Splunk Cloud with R...

by New Member in

Timechart average

Hi, I am pretty new to splunk and need help with a timechart. I have a timechart, that shows the count of packag...

by Path Finder in

Splunk multiple field extraction

I have the below Splunk Event & need to extract multiple fields from the same : [TIMESTAMP=2021-02-19 ...

by Path Finder in

Why is the Dashboard Base Search is not working for all panels?

I did build a Dashboard with a base search and five panels, all based on the base search. Somehow, two of five panels...

by Engager in

Add a comment to a search?

I'm working on a really large search right now (on the order of 35 lines long). Is there a good way to insert a comme...

by Motivator in

Code to prepare a Comparison Result table.

Hi All, Need help in a Splunk code. Below is the data am having and a sample Table how the output looks like. Inp...

by Communicator in

Trigger an alert after comparing two search results

I have two search conditions that I need to trigger alerts from. I have a hundred hosts on a HA cluster. Sometimes ho...

by Explorer in

how to create hyperlink for a plain text that directs to search query on splunk dashboard

Hi , Please help on this @niketn the below 2 rows as single panel search by employeeid(hy...

by Explorer in

Extract Field Issue, but when using in a search.

My goal is to match whatever is after "Commit Description:" up until but not including the " after TASK0123456. I don...

by Loves-to-Learn in

Get the exception and Error in Splunk query

I am trying to build a splunk query to get the error summary from a log. I want to capture all the events where ther...

by Explorer in

Cascading replication of large bundles

Hello everyone I found a wierd bug in the cascading replication process. The shcluster captain says when he tries t...

by Explorer in

Field renaming of some but not all fields

While on a mission to eradicate 'join', I was showing someone how to replace a join statement with stats. However, ...

by SplunkTrust in

How to get an epoch time for $client_time.latest$

Hi, I have a dashboard with a dropdown form allowing users to select the time period they wish to analyse. I am l...

by Engager in

Get Updates on the Splunk Community!

Splunk Search

Discussions

Extract New Field - First x characters

Unable to extract two different pattern strings by rex command

Splunk Cloud Rest Api Python

Timechart average

Splunk multiple field extraction

Why is the Dashboard Base Search is not working for all panels?

Add a comment to a search?

Code to prepare a Comparison Result table.

Trigger an alert after comparing two search results

how to create hyperlink for a plain text that directs to search query on splunk dashboard

Extract Field Issue, but when using in a search.

Get the exception and Error in Splunk query

Cascading replication of large bundles

Field renaming of some but not all fields

How to get an epoch time for $client_time.latest$

What’s New in Splunk Cloud Platform 9.1.2308?

Index This | Why do they call it hyper text?

State of Splunk Careers 2023: Career Resilience and the Continued Value of Splunk

Users with the same roles, in the same app, and sa...

auto_generated_pool_download-trial

Automatic lookup during data ingestiont (Splunk cl...

Working with OpenTelemetry Cumulative Histogram Bu...

Better PDF report visualization