Splunk Search

Discussions

Thread Info

How do I make a suggestion?

Hello Splunkers, Where do I go to leave feedback or suggestions for Splunk? I have the following suggestion but don't...

by Path Finder in

Appending Lookup Match to Search Results

Hi all, I have a search that filters results based on a lookup file. Is there a simple way that I can add the matc...

by Path Finder in

Example of how to measure continuous delivery duration?

Does anyone have examples of how to use Splunk to measure continuous delivery duration?

by Splunk Employee in

Add individual logs by field to produce a count

I have several different timers in the logs which are in the format below: INFO: [timerName=TimerName.RestTransact...

by Path Finder in

How to access Splunk web without port

Now im accessing Splunk web using https://splunk.company.com:8000/ I would like to access it without entering the...

by Explorer in

lookup/inputlookup from csv

Hey, Im trying to search splunk indexes, for the content within a CSV. The CSV will eith contain ip addresses o...

by Engager in

How to check since how long the field is having null value?

I want to check for how long my field TPP_ID is empty. I want to check date and time. Is it possible using splunk que...

by Explorer in

How to use two queries in one?

Hello, Today i have this query in my dashboard : | loadjob savedsearch="myquery" |eval FromDate = "2020-01-23"...

by Explorer in

srchIndexesDefault parameter is not respected when srchFilter is defined

We noticed that when a srchFilter is configured for a role in authorize.conf, the srchIndexesDefault setting is ignor...

by Splunk Employee in

Change base search based on dropdown

Is there a way other than using the panel depends to display based search depending on a dropdown? Dropdown <i...

by Path Finder in

Regex for CIDR exclusion

Hi, Need some help with getting a correct Regex for CIDR exclusion. *(This is an example. Not the real IP range...

by Path Finder in

The bug of fields extraction in Splunk Web

Hi, Splunkers: I found a bug of fields extraction in Splunk Web like following picture: As you can see, I was ext...

by Path Finder in

transaction: inconsistent results

The following two logical events are supposed to be one as they share the same threadId - but instead they are split ...

by Contributor in

Why is my search slow when performed in a dashboard and fast when entered directly into the search box?

Dear All A search command that performed directly under "Search" takes 10-12 sec, takes 2 Minutes and 30 sec to co...

by Contributor in

I need to know which index and app has been access how many time in last one month

I need to know how many time all the indexes in my splunk has been accessed in last 30 days by app name(I tried so ma...

by Loves-to-Learn in

How to create dynamic inputs using lookup

I have a dashboard that shows 3 priorities/3panels -Critical, high, low. the dropdown Input is hardcoded using certai...

by Explorer in

how to compare avg server response time with the one from the current day?

Hello, here is what I try to do: I want to know if my todays average duration is slower or faster than my average ...

by New Member in

How to correctly use mstats rate() without listing all dimensions in BY clause?

I have a monotonic counter metric named http_req and my metric data points are tagged with path and host dimensions, ...

by Explorer in

issues with escaped quotes and index extrations with regex

ok, so I am trying to pull some fields from the following log file entry: "127.0.0.1",11/21/2019 8:19:49 PM,11/21/...

by New Member in

Need to find query from mobile(Android, IOS) device

Hello, I am new in Splunk, Looking for result which is coming from Android and IOS devices, seeing android and IOS...

by Explorer in

Get Updates on the Splunk Community!

Splunk Search

Discussions

How do I make a suggestion?

Appending Lookup Match to Search Results

Example of how to measure continuous delivery duration?

Add individual logs by field to produce a count

How to access Splunk web without port

lookup/inputlookup from csv

How to check since how long the field is having null value?

How to use two queries in one?

srchIndexesDefault parameter is not respected when srchFilter is defined

Change base search based on dropdown

Regex for CIDR exclusion

The bug of fields extraction in Splunk Web

transaction: inconsistent results

Why is my search slow when performed in a dashboard and fast when entered directly into the search box?

I need to know which index and app has been access how many time in last one month

How to create dynamic inputs using lookup

how to compare avg server response time with the one from the current day?

How to correctly use mstats rate() without listing all dimensions in BY clause?

issues with escaped quotes and index extrations with regex

Need to find query from mobile(Android, IOS) device

Splunk Cloud | Empowering Splunk Administrators with Admin Config Service (ACS)

Tech Talk | One Log to Rule Them All

Splunk Security Content for Threat Detection & Response, Q1 Roundup

Matching index field value with lookup field value

extract fields from json-wrapped postfix logs?

How to configure alert when a service is in failed...

how to identify '\n' in Splunk rex

How to combine results of inputlookup and a search...