Splunk Search

Community Activity

regex to remove first occuring numeric values with coma I want to remove the numeric value and comma which is occurring on the first line beginning 1,Woolworths appoints n... by DataOrg Builder in Splunk Search 01-29-2020 0 6	0	6
No cookie support detected. Check your browser configuration. Does anyone have any insight into this issue? We are very new to Splunk and running IE9, in non-compatibility mode, a... by bozza Engager in Splunk Search 01-29-2020 0 8	0	8
How to extract these fields? Hi, let's say we have events with _raw data like this: <XY>aaa,bbbb,priority,high<XY>aaa,bbb,login,failed<XY>aaa,bb... by HeinzWaescher Motivator in Splunk Search 01-29-2020 0 3	0	3
Select data from the most recent file logged this month over multiple hosts I have a clustered application running in active/passive configuration. We run a report at the beginning of every m... by splunk-support0 Explorer in Splunk Search 01-29-2020 0 8	0	8
How to group by in nested JSON? Hi all, i have a json file like this. { "JOB_NUM" : "1", "JOB_TIME" : "1/1/2020", "JOB_STATUS" : "PASS", "JOB_DU... by anooshac Communicator in Splunk Search 01-29-2020 0 18	0	18
search to show me all my splunk enterprise devices Hi Is there a search in splunk which I can run from search head which will show me all splunk enterprise devices? by net1993 Path Finder in Splunk Search 01-29-2020 0 4	0	4
predict future_timespan value as a calculated variable Hi, I am trying to use the predict function to predict hourly values through to the end of the current day. To do thi... by danan5 Path Finder in Splunk Search 01-28-2020 0 1	0	1
How to find difference between events for a transaction? Hello Everyone, I want to find duration between the events in a transaction. Let's say I have 100 events In a transac... by marisstella Explorer in Splunk Search 01-28-2020 0 1	0	1
Custom expand table row visulization Hi Team, I have a simple table that I want to show in a dashboard - user search history. Columns "_time" and "search... by tomasmoser Contributor in Splunk Search 01-28-2020 0 1	0	1
Alternate to dedup Hi, I need to remove duplicates in my results, is there anyway to do this other than using dedup. I used stats, eve... by rupesh26 Path Finder in Splunk Search 01-28-2020 2 10	2	10
How to get fieldsummary on the xml values of request body Hello, I have XML data as values of requestbody field in Splunk search below, need field summary on the break down o... by msrama5 Explorer in Splunk Search 01-28-2020 0 1	0	1
Create key value pair from a key and value column I am not sure why I can't figure this out, been all over and each untable or makemv solution fails for this simple ch... by Cuyose Builder in Splunk Search 01-28-2020 0 1	0	1
Sample outputs.conf for Indexer Discovery,Self Signed Certificate and default Indexer group Can anybody help me with sample outputs.conf for Indexer Discovery,Self Signed Certificate and default Indexer group ... by ansif Motivator in Splunk Search 01-28-2020 0 1	0	1
search for pattern and if condition greater than chart splunk search Hi Team, I have a query that output below. loggerName="test" DC=Test ENV=IT AppName=Test2 HostPort=9443 ClientIP=1... by harkirat9712 Explorer in Splunk Search 01-28-2020 0 3	0	3
How do I make a suggestion? Hello Splunkers, Where do I go to leave feedback or suggestions for Splunk? I have the following suggestion but don't... by eliasit Path Finder in Splunk Search 01-28-2020 0 1	0	1
Appending Lookup Match to Search Results Hi all, I have a search that filters results based on a lookup file. Is there a simple way that I can add the match ... by driva Path Finder in Splunk Search 01-28-2020 0 3	0	3
Example of how to measure continuous delivery duration? Does anyone have examples of how to use Splunk to measure continuous delivery duration? by sloshburch Ultra Champion in Splunk Search 01-28-2020 0 1	0	1
Add individual logs by field to produce a count I have several different timers in the logs which are in the format below: INFO: [timerName=TimerName.RestTransactio... by thenormalone Path Finder in Splunk Search 01-28-2020 0 9	0	9
How to access Splunk web without port Now im accessing Splunk web using https://splunk.company.com:8000/ I would like to access it without entering the p... by spl_unker Explorer in Splunk Search 01-28-2020 0 2	0	2
lookup/inputlookup from csv Hey, Im trying to search splunk indexes, for the content within a CSV. The CSV will eith contain ip addresses or ur... by barneser Engager in Splunk Search 01-28-2020 0 3	0	3
How to check since how long the field is having null value? I want to check for how long my field TPP_ID is empty. I want to check date and time. Is it possible using splunk que... by 493600 Explorer in Splunk Search 01-28-2020 0 1	0	1
How to use two queries in one? Hello, Today i have this query in my dashboard : \| loadjob savedsearch="myquery" \|eval FromDate = "2020-01-23" \|e... by tahasefiani Explorer in Splunk Search 01-28-2020 0 2	0	2
srchIndexesDefault parameter is not respected when srchFilter is defined We noticed that when a srchFilter is configured for a role in authorize.conf, the srchIndexesDefault setting is ignor... by sylim_splunk Splunk Employee in Splunk Search 01-28-2020 1 2	1	2
Change base search based on dropdown Is there a way other than using the panel depends to display based search depending on a dropdown? Dropdown <inpu... by michaelrosello Path Finder in Splunk Search 01-28-2020 0 6	0	6
Regex for CIDR exclusion Hi, Need some help with getting a correct Regex for CIDR exclusion. *(This is an example. Not the real IP range. ) ... by aknsun Path Finder in Splunk Search 01-27-2020 0 7	0	7