Splunk Search

Community Activity

iplocation is not working Hello, iplocation is not working for some IP addresses (152.89.162.133 for example) But this IP location is in the Ge... by securiteinforma Explorer in Splunk Search 01-21-2020 0 2	0	2
Splunk management server backup and restore Hello Splunkers.... I am trying to upgrade our management server from 6.6.2 to 7.3.2. I am taking backup of /opt/spl... by suryaaruna New Member in Splunk Search 01-21-2020 0 3	0	3
snap to 10 minutes Hi , I want to snap to 10 minutes. I know how to snap to an hour for example: ... \| eval _time=relative_time(_time,"@... by dadi Path Finder in Splunk Search 01-21-2020 0 3	0	3
The "precision" and "recall" shown on GUI seems wrong in Machine Learning Toolkit I tried "Predict Categorical Fields" of showcase in Machine Learning Toolkit. I calculated the "precision" and "recal... by nchinen New Member in Splunk Search 01-21-2020 0 0	0	0
Issue with strftime time function. It always adds few minutes to actual results Hi Team, I have gone through the forum but couldnt find which suits my requirement. We are trying to calculate time d... by abochare New Member in Splunk Search 01-21-2020 0 3	0	3
how to configure new string for Linux servers CPU check,how to configure string to get logs of CPU usages of Linux hosts I have index=os-icon-rhel and there are many sourcetypes are confirmed except CPU check. how to add sourcetype=CPU fo... by shobhna744 New Member in Splunk Search 01-21-2020 0 2	0	2
How to create a table with several fields and totals by each value Imagine that I have a table of results like this: Field1 Field2 Field3 Field4 Field5 Field6 Field7 Field8 Field9 1 ... by splunk_exercice New Member in Splunk Search 01-21-2020 0 1	0	1
How to index perl hash data? I have a the output of a Perl script as a Perl hash. I'm not able to run the script directly from Splunk, but would l... by cblanton Communicator in Splunk Search 01-21-2020 0 2	0	2
Sum of total files with same date Hi, I've got a search that provides a table of 60 filenames. 30 filenames with a -3 days from today's date and 30 f... by 373782073 Explorer in Splunk Search 01-21-2020 0 2	0	2
Why does the map command shows results only when the second query have value? Hi Splunkers, I have first query which produces 50 results, am using map command to run different query for each 50 ... by SathyaNarayanan Path Finder in Splunk Search 01-21-2020 0 3	0	3
How to create eval statement to get percentage from 2 fields extracted with spath on JSON data? I have a field PP that I would like to use in eval statement to get a percentage from JSON data and using spath. Her... by bwindham Path Finder in Splunk Search 01-21-2020 0 5	0	5
How do I search by unicode value? Hi, I have the following example record: 30/08/2018 13:30:27.996;VM1;ASH;AccessModule;processPacketBuffer;MSISDN;xx... by yyossef Explorer in Splunk Search 01-21-2020 0 7	0	7
Custom Index I have one specific dashboard that I monitor with 7 tiles on it, there are times when the dashboard searches auto can... by mavilla Explorer in Splunk Search 01-21-2020 0 4	0	4
Unable to access splunk web - license warnings - trial version Hi, I just installed a trial version of splunk and I am unable to access web. I see the following messages : 01-20-... by capulauser Explorer in Splunk Search 01-21-2020 0 7	0	7
当日分各データと過去データの比較 ○各ユーザの当日分各データと過去データ5件で比較を行いたいです。次のようなデータの場合、 ①id=8とid=7～id=3、 ②id=7とid=6～id=2 で比較したいです。 "id","timestamp","userid","... by nishida_tada_ca Loves-to-Learn Lots in Splunk Search 01-21-2020 0 5	0	5
subtraction using eval Hi, I have two fields : In-Time and Out-Time Here is some sample entries In-Time Out-Time 8:33 17:39 ... by ChhayaV Communicator in Splunk Search 01-21-2020 1 13	1	13
Is there a way to pre-set the earliest event of a search for a user? Hello Splunk Community, in order to honour privacy policies we need to limit the searches of most users/roles of an ... by DATEVeG Path Finder in Splunk Search 01-21-2020 0 2	0	2
how to create a table with empty cells Hello, I would like to create a table in below format in splunk. should display first value in first cell of first c... by PC00128849 New Member in Splunk Search 01-21-2020 0 3	0	3
Timechart with count of open connections per protocol (TCP/UDP/ICMP) ? Hi, i'm getting stuck an weird using Splunk to show me am Timechart for the last 30 days with open connection per pro... by rhornung Explorer in Splunk Search 01-20-2020 0 10	0	10
create a table with one column will display some items on one field and another column to display all other items from the same field I have firewall logs where the field "user" has multiple user id's including guest and unknown. I need to count all ... by d4rk_sp1d3r Loves-to-Learn Lots in Splunk Search 01-20-2020 0 4	0	4
I can't collect logs in splunk GUI after splunk configuration Hello!!!! I can't collect logs in Splunk after Splunk configuration I have done all configuration but I still not g... by pacifikn Communicator in Splunk Search 01-20-2020 0 3	0	3
How to make a Simple Pie Chart showing the percent on the pie Im trying to create a simple Pie chart from a csv file or indexed data and cant seem to configure the Pie chart corre... by mikeoks New Member in Splunk Search 01-20-2020 0 1	0	1
Splunk UI not working windows 10. I believe the latest MS updates changed something that is preventing Splunk to open. The error message does not say m... by GersonGarcia Path Finder in Splunk Search 01-20-2020 0 2	0	2
How to find total byte count? I am looking through my firewall logs and would like to find the total byte count between a single source and a singl... by DEAD_BEEF Builder in Splunk Search 01-20-2020 0 4	0	4
Regex to extract the end of a string (from a field) before a specific character (starting form the right) Hi Everyone: I'd like to extract everything before the first "=" below (starting from the right): sender=john&uid=j... by mdeterville Path Finder in Splunk Search 01-20-2020 0 4	0	4