Splunk Search

Community Activity

How to list all sourcetypes I am trying to list all sourcetypes in an index using dc Using index="test" \| stats dc(sourcetype) as sourcetypesonl... by ialahdal Path Finder in Splunk Search 10-13-2019 1 2	1	2
Only one value from subsearch being used by parent I would like all the results from a field extraction in search "A" to be used as search criteria in search "B". I am ... by 775149 New Member in Splunk Search 10-13-2019 0 2	0	2
How to use regex to look for hosts from /24, /25, and /26 subnets? I have a dozen /24 subnets that I am looking to find any IP addresses on that subnet in my search as well as a addres... by rholm01 Explorer in Splunk Search 10-13-2019 0 2	0	2
How to calculate a value from 2 different sources? I am pretty new to splunk. It would be great if someone can help me with a search command. I have productId as one of... by kirthi_d Engager in Splunk Search 10-13-2019 0 4	0	4
How to merge 2 fields and get unique value We have prod and non prod events and trying to display the environment names in dashboard. The prod events contain ho... by dyapasrikanth Path Finder in Splunk Search 10-13-2019 0 4	0	4
Can one do less than greater than comparisons from fields in a lookup table? I have a lookup table that is composed of beginning IP and ending IP addresses for a location and the name of the ass... by beattiedb New Member in Splunk Search 10-13-2019 0 6	0	6
Count of repeated expression in a field Below is sample field value Response : UX 189000055 - RESPONSE1, BB 10437470 - RESPONSE1, AB 11123345 RESPONSE2 If I... by gjjagadeesh New Member in Splunk Search 10-13-2019 0 4	0	4
Displaying logs last x days for every month Not displaying logs more than the last 3 days. This pattern is the same for the last months as well. for example. If... by Kantsplunk New Member in Splunk Search 10-13-2019 0 4	0	4
Finding the Duration between two timestamps I am currently attempting to create a query that returns the Name of the job, Begin Time, Finish Time, and Duration. ... by tyhopping1 Engager in Splunk Search 10-12-2019 0 8	0	8
How to increase the maximum number of concurrent historical searches? Splunk warns that: The system is approaching the maximum number of historical searches that can be run concurrently.... by perlish Communicator in Splunk Search 10-11-2019 4 4	4	4
Help with field extraction regex - com.texh.servers.policy.assertion.ServerAuditDetailAssertion: com.texh.log.custom.Applications: com.texh.log.cu... by snallam123 Path Finder in Splunk Search 10-11-2019 0 4	0	4
Field Extraction: Regex global flag/modifier Hi Splunkers, I know that it is possible to match multiple times using rex (using max_match=0). Can I apply the sam... by konnex Explorer in Splunk Search 10-11-2019 0 5	0	5
Need help to speed up a search the below search is what I have working now to see what users are not in the first event code. index="wineventlog" ... by lgrachek Explorer in Splunk Search 10-11-2019 0 11	0	11
Expand button in tables Hi all, I tried finding my answer in the existing topics, but I couldn't find it. So I created my own topic. Maybe i... by makstra New Member in Splunk Search 10-11-2019 0 1	0	1
Problem with optimization of the regex: limits.conf Hi I have a problem with the error message of the Splunk: Error in 'rex' command: regex="(?ms)]+^\s\" has exceeded c... by spisiakmi Contributor in Splunk Search 10-11-2019 0 6	0	6
How to delete unwanted special characters in alphanumeric string? I have a string as below, I need to delete the below special character and make the below as a single value. 123asds... by ravimmm Explorer in Splunk Search 10-11-2019 1 6	1	6
Generating custom command not streaming output I have created following custom command: @Configuration(streaming=True) class GenerateTextCommand(GeneratingCommand)... by jakubzak Explorer in Splunk Search 10-11-2019 1 0	1	0
Comparision of two fields Splunk Hi , Suppose I write a query and if say I have a field (A) and field (B) A B 1 1,3,4,5,8,9,10 5 ... by megha0794 New Member in Splunk Search 10-11-2019 0 5	0	5
Search that Alerts for two events with a matching field Hi I'm new to Splunk and am having a hard time finding a simple solution to this. I tried using subsearch and append... by jinito14002 New Member in Splunk Search 10-11-2019 0 3	0	3
Regex for fields Hi All, can you please help in extracting three fields from below data using regex Name code Type Below are three di... by shugup2923 Path Finder in Splunk Search 10-11-2019 0 3	0	3
Help with regex to extract words before column" Events: com.texh.servers.policy.assertion.ServerAuditDetailAssertion: 9879: com.texh.log.custom.Applications: 99... by snallam123 Path Finder in Splunk Search 10-10-2019 0 2	0	2
How to use self join Hi All, I have table in which I have columns such as name, id, type, business group etc type field has 2 values 'user... by shugup2923 Path Finder in Splunk Search 10-10-2019 1 6	1	6
largest single day result in a 90 day period I have a search to find total ingest into splunk, which i can run for a day or against a longer period by using the t... by sdewar83 Path Finder in Splunk Search 10-10-2019 0 3	0	3
Field extraction based on position of character Hi, I have field that gives me NETBOS of a Host. Sample Host Name: 123456W12345678 The 7th character makes the ide... by mbasharat Builder in Splunk Search 10-10-2019 0 2	0	2
How to pass values from previous search into map search Hello all, my search is below: index=tcxelevate_webpos registerType=kioskBridge registerNbr=* countryCode=US tagName... by rlippincott Explorer in Splunk Search 10-10-2019 0 2	0	2