Splunk Search

Discussions

Thread Info

Visualizations: Why is there a dot in my time chart graph?

Just want to ask why sometimes there is a dot in my time chart graph? and how to erase that? The dot looks like pictu...

by Explorer in

Percentage chart

Hi. I have a query that makes the difference of a query comparing today with last week. I would like to generate a...

by Path Finder in

How to count until a specific number and go to next value in field

Here is my current query: index=abc* |stats count by user,date |eval highcount=(if count >=1000,1000,count) Th...

by Explorer in

Searching and matching from two different indexes and retrieving values from one index

I have two indexes that contain the same ip address but only one index contains hostnames for the ip addresses. How c...

by New Member in

create table from database schema

hi i have database schema, and want to extract a table like in picture. i try to use regular expression but it's not...

by Motivator in

Change graphics in XML

Hello, I have the splunk chart structure and would like to leave the 03 charts that are of numbers together within...

by Path Finder in

AD User logon/Destination host report

Hello Community, I am new in splunk. I want to make a report with all AD User logon with the details the source an...

by New Member in

How to input a single epoch time from a dashboard URL as a time range inside the time picker

Hey gang, I have an external system which can call a dashboard URL - but it can only supply a single epoch time How ...

by Explorer in

Is it possible to have a joined search with condition A in the first search OR condition B in the second search?

by New Member in

Why is the timechart command not working properly?

Hi All, Hope you all are good. I was working on displaying the number of machines which are active for last one...

by Explorer in

search problem

Hello , I'm getting the following error in the Search head. How do I troubleshoot? Search process did not exit...

by Path Finder in

add time constraint for web site avilability check condition

Referring below query: index=f5 | rex field=headers "Host: (?<host_url>[a-zA-Z0-9\-\.]+\.[a-zA-Z]{2,3})" | eval p...

by Path Finder in

Why am I getting error "problem replicating config (bundle) to search peer..." on one search head and am getting no search results?

Hi, I see the following error on one of my search heads since yesterday. Tried different things but haven't been ...

by Path Finder in

Custom Command in Splunk

I have created a python script and it is taking an argument . I have declared it ,like this` hash = Option( ...

by Communicator in

search with same field diferent dates into a table side by side

i want to verify if there is a difference in 2 counts made that relate to diferent timelines. This is what i've ca...

by Path Finder in

Timechart issue

Hi all, I have extracted a field (exit_status) in log file. I want to know if a process exit properly. I have ...

by Path Finder in

Is it possible to display events of multiple _time-values at once?

I am trying to build a decent drilldown option and my current state is the following. I have a timechart with the ...

by New Member in

refresh for sub set of admin role

@MuS I would like to give access to some user to do refresh, i know they need admin role. However admin has 99 ca...

by Influencer in

index syntax question

Within Splunk cloud 7.2.6 - If I run a search without specifying index or sourcetype it will search the main index by...

by Path Finder in

legacy notation: populating search for populating a tickbox input.

I have the following bit of code that does a search. The results of that search populates a tickbox input. I wrote it...

by Motivator in

duplicate values causing conflict

Hi, Im getting this error although I do not have any duplicate values. Below is the screenshot and my xml: <for...

by Contributor in

Drop-down error "Duplicate values causing conflict" - Dedup not working?

Hi everyone, I'm trying to dynamically populate a dropdown menu with error codes. Obviously, I don't want duplica...

by Path Finder in

Searching for percentage of total count grouped into buckets

I have a list of article IDs and their corresponding article view counts for a given day. I want to see what perc...

by Explorer in

question about vulnerability?

Greetings!! I would like to ask about this vulnerability : https://www.bleepingcomputer.com/news/security/splunk-f...

by Communicator in

Is it possible to launch a connector in Splunkbase?

Hi All, We have a prediction platform and we have developed a connector that can explore Splunk SDK for search and...

by New Member in

Get Updates on the Splunk Community!

Splunk Search

Discussions

Visualizations: Why is there a dot in my time chart graph?

Percentage chart

How to count until a specific number and go to next value in field

Searching and matching from two different indexes and retrieving values from one index

create table from database schema

Change graphics in XML

AD User logon/Destination host report

How to input a single epoch time from a dashboard URL as a time range inside the time picker

Is it possible to have a joined search with condition A in the first search OR condition B in the second search?

Why is the timechart command not working properly?

search problem

add time constraint for web site avilability check condition

Why am I getting error "problem replicating config (bundle) to search peer..." on one search head and am getting no search results?

Custom Command in Splunk

search with same field diferent dates into a table side by side

Timechart issue

Is it possible to display events of multiple _time-values at once?

refresh for sub set of admin role

index syntax question

legacy notation: populating search for populating a tickbox input.

duplicate values causing conflict

Drop-down error "Duplicate values causing conflict" - Dedup not working?

Searching for percentage of total count grouped into buckets

question about vulnerability?

Is it possible to launch a connector in Splunkbase?

Fun with Regular Expression - multiples of nine

[Live Demo] Watch SOC transformation in action with the reimagined Splunk Enterprise ...

What’s New & Next in Splunk SOAR

In Splunk studio, is it possible to populate a tex...

Help me with splunk query to monitor CPU and Memor...

How can i export a list of all services in APM

Splunk Answers Content Calendar May 2025!

MLTKC how should i check jupyter notebook func in ...

Splunk Search

Are you a member of the Splunk Community?

Discussions