Splunk Search

Community Activity

	Transaction command: How to get the pair up multiple "startswith", but single "endswith" events? hi We have events something like below 2019-04-30 11:00:01 page=Login.jsp action=login userid=1234 comment="User op... by koshyk Super Champion in Splunk Search 04-30-2019 0 0	0	0
	Delta Conditional Statement? Good Morning Everyone, Is it possible to use delta with a conditional statement? As in: Only give me the delta p=... by ryhluc01 Communicator in Splunk Search 04-30-2019 0 8	0	8
	Need help deleting a saved search from a search query. Hello, I am trying to create a search that I can use to delete a saved search. Looking at https://docs.splunk.com/D... by cgif_ctac New Member in Splunk Search 04-30-2019 0 4	0	4
	Creating buckets based a percentage of occurrence. BASE_SEARCH \| stats count(web-calls) as web-call-count by server_response \| eventstats sum(web-call-count) as total \|... by zacksoft Contributor in Splunk Search 04-30-2019 0 3	0	3
	Is there a way I can send multiple csv reports from mulitple saved searches in a single mail. I have a requirement to send output from multiple saved searches as seperate CSV reports in a single mail. Any pointe... by prammod123 Explorer in Splunk Search 04-30-2019 0 0	0	0
	Displaying peak count/hr of each uri The problem statement consists of 2 parts capture all the URIs hit in a specific month with specific conditions as b... by harpan New Member in Splunk Search 04-30-2019 0 0	0	0
	How to get percentage in stats instead of count? I am calculating number of web-calls that were served in certain seconds. \| stats count(web-calls) as web-call-count ... by zacksoft Contributor in Splunk Search 04-30-2019 0 4	0	4
	Problem with (automatic or not) field extraction Hi guys, I have this case. Structured (more or less) data, KV pairs with '=' and divided with tabs. Case 1 (automa... by a_naoum Path Finder in Splunk Search 04-30-2019 0 0	0	0
	Search Returning some empty cells Hi, I'm pretty new to splunk searches and i am trying to report on successful logins for login types 7, 8, 10 and 11,... by evanbonner New Member in Splunk Search 04-30-2019 0 2	0	2
	How to get transaction count between 5-10 10-15? How to get transaction count between 5-10sec 10-15sec as table ? Expected : Total Success Failure 0-5 Secs 5-... by karthi2809 Builder in Splunk Search 04-30-2019 0 1	0	1
	I tried uploading a file into Splunk and created a new index for the same,but unable to view the file count it shows zero I tried uploading a file into Splunk and created a new index for the same,but unable to view the file count it shows ... by sathyarajmuruga New Member in Splunk Search 04-29-2019 0 0	0	0
	appbrowser error ssl after installation Hello everybody, After the installation of Splunk, I can't to do a search on app. The error message is : Error conne... by ndarracq New Member in Splunk Search 04-29-2019 0 0	0	0
	Getting the counts by day but keeping the timestamp Hi, Messing with dns logs im trying to get the domain that was only queried afew times per day. However i would also ... by totaro Explorer in Splunk Search 04-29-2019 0 2	0	2
	Splunk cloud - AWS - COncurrent searches say, I have a splunk cloud,, Splunk as a service running in AWS with a daily index volume of 10 GB data per day. what... by dhivyam New Member in Splunk Search 04-29-2019 0 3	0	3
	Why i am getting Error in 'eval' command: The expression is malformed. An unexpected character is reached at '\"1\", \"icon-check\", \"icon-alert\")'. Hi all , I am trying to configure alert for data replication in cluster manger. Using below query , getting "Error i... by vasanthi77 Explorer in Splunk Search 04-29-2019 0 1	0	1
	How to filter the log using REGEX? I have logs which contains 'LogonType=Owner' and some logs which contains 'InternalLogonType=Owner'. I want to send... by sarwshai Communicator in Splunk Search 04-29-2019 0 17	0	17
	How to place splunk lookup table data output to a remote server? Hi All, I had configured an alert with trigger action as Output results to lookup with replace option . Since the al... by raj_mpl Path Finder in Splunk Search 04-29-2019 0 1	0	1
	splunk masking the entire event instead of regex matching Hello, I am learning splunk. I have written a transforms to mask the email ID's however, the splunk is masking the e... by iamlearner123 Explorer in Splunk Search 04-29-2019 0 1	0	1
	Encountered the following error while trying to update: Cannot edit report that is embedded. How to change the execution schedule of a report which is already embeded. Also how to find if a report is embeded? by vikram_m Path Finder in Splunk Search 04-29-2019 0 3	0	3
	Subsearch produced 144180 results, truncating to maxout 10000. Hi All, I am running tstats command and matching with large lookup file but i am getting the "[subsearch]: Subsearch... by sumitkathpal Explorer in Splunk Search 04-29-2019 0 3	0	3
	How to get ptime from below string Hi , Below is my field "rtpmap:8 PCMA/8000,rtpmap:101 telephone-event/8000,ptime:20" I would like to get ptime from... by Veeruswathi Explorer in Splunk Search 04-29-2019 0 5	0	5
	Splunk Query for Nessus vulnerabilities between firstSeen and lastSeen dates I’m new to Splunk. I’m trying to come up with a search that would provide me with the number of Nessus vulnerability ... by alexj2323 New Member in Splunk Search 04-29-2019 0 2	0	2
	How to associate dbxquery results with search results? hi everyone,forgive me me for Chinese English first, I hope you can read my questions. \|dbxquery connection="Connect... by bestSplunker Contributor in Splunk Search 04-29-2019 0 3	0	3
	are they ways to make queries like this faster? I have to run a query periodically like this. The query seems to run pretty slow. Are there ways to optimize such a... by dtakacssplunk Explorer in Splunk Search 04-28-2019 0 2	0	2
	Why is the search not showing all the expected results? Hello, I have log file that contains the following rows (im showing only those who relevant to my question) <0> 11/... by sarit_s Communicator in Splunk Search 04-28-2019 0 13	0	13