Splunk Search

Community Activity

How to extract field using mode=sed for name extraction? How to extract field using mode=sed for name extraction? index=test Sender=PEGAS \| rex field= URI"^(?.+?)(\?\|\z)" \|... by karthi2809 Builder in Splunk Search 12-17-2018 1 7	1	7
Is using the transaction command an overkill in this case? If I have two searches as below (uniqueId is a common field exists in both searches, while field1, field2 are unique... by jliu531 Engager in Splunk Search 12-17-2018 0 1	0	1
How do I sort my search events by week? I am new to Splunk. I am having a problem sorting my search results by week. I tried using the following dates as my ... by ronniemakhombi Explorer in Splunk Search 12-17-2018 0 8	0	8
how can i reset splunk.com login password how can i reset splunk.com login password, the email id in the account has a typo, so the reset password option is no... by soumyasaha25 Contributor in Splunk Search 12-17-2018 0 3	0	3
multiple field in geostats HI, i am trying to display multiple fields like num1, num2, num 3 in map and trying to gets its lat and long from ex... by vikashperiwal Path Finder in Splunk Search 12-17-2018 0 3	0	3
Is it violating license agreement to bring in data from external system? We index a lot of data in Splunk, but we also have a lot of other tools, we would like to use Splunk as single pane o... by xchang1226 Path Finder in Splunk Search 12-17-2018 0 6	0	6
Single query to an external REST API I am working on an app that will have an interactive UI where you could input a hash value and afterwards the app wou... by JerryLives Engager in Splunk Search 12-17-2018 0 0	0	0
Is there a Splunk command to find out configuration errors or typos? Hi, I was wondering is there a Splunk command to find out configuration errors? For example, LINE_BrEAKER in props ... by kteng2024 Path Finder in Splunk Search 12-17-2018 0 7	0	7
How do you compare the average memory performance of 2 servers? Hi All, Please help me create a query that compares cpu and memory with threshold performance in 1 month ( 4 data ) ... by mboiz New Member in Splunk Search 12-16-2018 0 5	0	5
Can you help me create a regex that would extract a host from a path? How can I extract hostname from the path for host_regex in data input on directory monitoring? I need only host name... by mlevsh Builder in Splunk Search 12-16-2018 0 3	0	3
How do I write a regex for different field extractions according to event value? I have events like the ones below. I want to make a different field extraction according to the value of field MODEL.... by eyirik Explorer in Splunk Search 12-16-2018 0 9	0	9
How can i retrieve the values of a correlation matrix from Splunk web into a text file (name of the fields)? hello , can anyone tell how can i retrieve the values of a correlation matrix from Splunk web into a text file (nam... by marounb98 New Member in Splunk Search 12-16-2018 0 0	0	0
How can I display our search results as a percent in a single value panel? Hi my basesearch... index = lc source= X \|stats count by status ...gets me the amount status by status: Status Am... by j_r Path Finder in Splunk Search 12-16-2018 0 6	0	6
How do I search data for the time & date that it was generated by the system? I have big data in an Index, but I am looking for the specific data of time & date of system generated. I have a thi... by rakesh44 Communicator in Splunk Search 12-15-2018 0 1	0	1
How can I optimize a search that times out? This search is looking back one month over a large dataset. I would like it to be accelerated, and run once a month o... by ridwanahmed Path Finder in Splunk Search 12-14-2018 0 5	0	5
Can you help me with the following timechart query? index=X sourcetype=X source=X \| timechart first(percentage_allocation) as percentage_allocation by devicename I am... by atulitm Path Finder in Splunk Search 12-14-2018 0 4	0	4
How can I display/hide some specific values in a dashboard? Hello everyone, I have a dashboard where some stacked volumes(7) are represented and also I added the total of these... by robertcoanca Explorer in Splunk Search 12-14-2018 0 1	0	1
From the following log data, how do I create a table that includes the average response time? My log Data is in this format: response="{"status":"success","Registries":[{"create":"2018-08-28","last":null,"Story... by pvrk007 New Member in Splunk Search 12-13-2018 0 1	0	1
How do you use regex on 2 fields and combine them into one field for an xyseries? Hi all, I have a simple regex to extract 2 fields — name1 and name2. And I would need to combine it like this: name1... by krusovice Path Finder in Splunk Search 12-13-2018 1 8	1	8
Can you help me create a search which would return the following table for a Splunk dashboard? Hi, I want to know if it is possible to do the following table in Splunk dashboard. Thanks. by yolandxx New Member in Splunk Search 12-13-2018 0 2	0	2
How to get the top 10 max values for each field value? Trying to analyze some windows perfmon data. The data looks like this: counter -> name of performance metric (ie. % P... by tjago11 Communicator in Splunk Search 12-13-2018 0 4	0	4
iplocation command not returning lat/lon fields (with allfields=true) As in subject, I run the following command: MY_SEARCH \| iplocation allfields=true clientip \| table lat lon And th... by adewinter Explorer in Splunk Search 12-13-2018 0 5	0	5
iplocation command not working in 6.3.0 Hi. I tried the following search, some search... \| fields cip \| stats count by cip \| iplocation cip I have workin... by thirumalreddyb Communicator in Splunk Search 12-13-2018 0 2	0	2
Splunk Jira Integration - Search returns no records Hi, Am trying to integrate Jira with Splunk enterprize and followed below steps. 1. Installed Add-on for Jira http... by sureshkrovi Explorer in Splunk Search 12-13-2018 0 1	0	1
Tags & Summary Index Hi everyone, I would like to know if it's compatible using tags and summary index at the same time. Thanks for ever... by pbalbasm Path Finder in Splunk Search 12-13-2018 0 1	0	1