Splunk Search

Community Activity

search for pattern and if condition greater than chart splunk search Hi Team, I have a query that output below. loggerName="test" DC=Test ENV=IT AppName=Test2 HostPort=9443 ClientIP=1... by harkirat9712 Explorer in Splunk Search 01-28-2020 0 3	0	3
How do I make a suggestion? Hello Splunkers, Where do I go to leave feedback or suggestions for Splunk? I have the following suggestion but don't... by eliasit Path Finder in Splunk Search 01-28-2020 0 1	0	1
Appending Lookup Match to Search Results Hi all, I have a search that filters results based on a lookup file. Is there a simple way that I can add the match ... by driva Path Finder in Splunk Search 01-28-2020 0 3	0	3
Example of how to measure continuous delivery duration? Does anyone have examples of how to use Splunk to measure continuous delivery duration? by sloshburch Ultra Champion in Splunk Search 01-28-2020 0 1	0	1
Add individual logs by field to produce a count I have several different timers in the logs which are in the format below: INFO: [timerName=TimerName.RestTransactio... by thenormalone Path Finder in Splunk Search 01-28-2020 0 9	0	9
How to access Splunk web without port Now im accessing Splunk web using https://splunk.company.com:8000/ I would like to access it without entering the p... by spl_unker Explorer in Splunk Search 01-28-2020 0 2	0	2
lookup/inputlookup from csv Hey, Im trying to search splunk indexes, for the content within a CSV. The CSV will eith contain ip addresses or ur... by barneser Engager in Splunk Search 01-28-2020 0 3	0	3
How to check since how long the field is having null value? I want to check for how long my field TPP_ID is empty. I want to check date and time. Is it possible using splunk que... by 493600 Explorer in Splunk Search 01-28-2020 0 1	0	1
How to use two queries in one? Hello, Today i have this query in my dashboard : \| loadjob savedsearch="myquery" \|eval FromDate = "2020-01-23" \|e... by tahasefiani Explorer in Splunk Search 01-28-2020 0 2	0	2
srchIndexesDefault parameter is not respected when srchFilter is defined We noticed that when a srchFilter is configured for a role in authorize.conf, the srchIndexesDefault setting is ignor... by sylim_splunk Splunk Employee in Splunk Search 01-28-2020 1 2	1	2
Change base search based on dropdown Is there a way other than using the panel depends to display based search depending on a dropdown? Dropdown <inpu... by michaelrosello Path Finder in Splunk Search 01-28-2020 0 6	0	6
Regex for CIDR exclusion Hi, Need some help with getting a correct Regex for CIDR exclusion. *(This is an example. Not the real IP range. ) ... by aknsun Path Finder in Splunk Search 01-27-2020 0 7	0	7
The bug of fields extraction in Splunk Web Hi, Splunkers: I found a bug of fields extraction in Splunk Web like following picture: As you can see, I was extra... by aojie654 Path Finder in Splunk Search 01-27-2020 0 1	0	1
transaction: inconsistent results The following two logical events are supposed to be one as they share the same threadId - but instead they are split ... by mitag Contributor in Splunk Search 01-27-2020 0 16	0	16
Why is my search slow when performed in a dashboard and fast when entered directly into the search box? Dear All A search command that performed directly under "Search" takes 10-12 sec, takes 2 Minutes and 30 sec to comp... by altink Builder in Splunk Search 01-27-2020 1 20	1	20
I need to know which index and app has been access how many time in last one month I need to know how many time all the indexes in my splunk has been accessed in last 30 days by app name(I tried so ma... by csharm21 Loves-to-Learn in Splunk Search 01-27-2020 0 5	0	5
How to create dynamic inputs using lookup I have a dashboard that shows 3 priorities/3panels -Critical, high, low. the dropdown Input is hardcoded using certai... by elrich11 Explorer in Splunk Search 01-27-2020 0 0	0	0
how to compare avg server response time with the one from the current day? Hello, here is what I try to do: I want to know if my todays average duration is slower or faster than my average du... by zooky92 New Member in Splunk Search 01-27-2020 0 2	0	2
How to correctly use mstats rate() without listing all dimensions in BY clause? I have a monotonic counter metric named http_req and my metric data points are tagged with path and host dimensions, ... by y0ft Explorer in Splunk Search 01-27-2020 0 2	0	2
issues with escaped quotes and index extrations with regex ok, so I am trying to pull some fields from the following log file entry: "127.0.0.1",11/21/2019 8:19:49 PM,11/21/20... by thadfield New Member in Splunk Search 01-27-2020 0 6	0	6
Need to find query from mobile(Android, IOS) device Hello, I am new in Splunk, Looking for result which is coming from Android and IOS devices, seeing android and IOS q... by sinha58 Explorer in Splunk Search 01-26-2020 0 24	0	24
Why are some of the fields showing ascii hex values for string after I get CEF stream data into splunk using cefutils? Using cefutils I am able to get CEF stream data into Splunk. The issue is some of the fields are showing ascii hex va... by sdesigowda New Member in Splunk Search 01-26-2020 0 1	0	1
python3.7, splunk 8.0, OS-RHEL8, when running scripted input getting error import BS4 Change the python varaible to phython3 and ran the following commnad dnf install python3-pip dnf install python... by mohammadsharukh Path Finder in Splunk Search 01-26-2020 0 1	0	1
How to search the peak CPU usage and duration of that peak usage for each machine from Windows performance logs? I am getting performance logs from several Windows servers. The value field shows the % of usage for each machine. I ... by rwiley Explorer in Splunk Search 01-26-2020 0 8	0	8
Need to combine nearest _time values for each field Hi Splunker, In my application when there is action, 3 events will be created for it. Eg : _time ... by SathyaNarayanan Path Finder in Splunk Search 01-26-2020 0 3	0	3