Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Splunk Search
Splunk Search
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Using Splunk
- :
- Splunk Search
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | My goal is to see the availability of NSG devices in percentage. Each NSG is connected to 4 VSCs. If connection to : ... by achoudhary1 New Member in Splunk Search 11-09-2018 0 0 | 0 | 0 | |
| | I have the following SPL. I am trying to calculate days i want to look up for data. Instead of trying to load a who... by wjrbrady Engager in Splunk Search 11-09-2018 0 5 | 0 | 5 | |
| | My problem is that I cannot understand why I get a different statistics number depending on wether I place the dedup ... by net1993 Path Finder in Splunk Search 11-09-2018 0 6 | 0 | 6 | |
| | Hello How can I get only results for specific fields where field name is like something ? fx. get all fields which... by net1993 Path Finder in Splunk Search 11-09-2018 0 12 | 0 | 12 | |
 | I couldn't find any documentation except that values(), when used in transforming commands, performs dedup. But there... by morethanyell Builder in Splunk Search 11-09-2018 0 7 | 0 | 7 | |
| | I am trying to sort the data month wise using the chart command. However the month is getting sorted alphabetically. ... by archu_01 New Member in Splunk Search 11-09-2018 0 8 | 0 | 8 | |
| | Basically I am trying to find hosts on a csv, not sending data to splunk. The problem is, we have to account for de... by bcyates Communicator in Splunk Search 11-09-2018 0 2 | 0 | 2 | |
| | Hi all, I have a SHC in my environment. Today I was troubleshooting an issue where my alert action wasn't firing. Af... by johannthum Explorer in Splunk Search 11-08-2018 0 0 | 0 | 0 | |
| | | eval lastChange=strftime(time_of_last_change,"%m-%d-%y %I:%M:%S %p") | eval timenow=now() | eval last1hr=strftime(... by tb5821 Communicator in Splunk Search 11-08-2018 0 5 | 0 | 5 | |
| | I am trying to accomplish a simple "IN" command in Splunk, basically by filtering the result to show only those entri... by hanriv0001 New Member in Splunk Search 11-08-2018 0 5 | 0 | 5 | |
| | SO I understand WHY I get the results I get but I am having a difficult time, most likely due to me, getting the resu... by tkwaller_2 Communicator in Splunk Search 11-08-2018 0 2 | 0 | 2 | |
| | We are going to be pushing our logs through a heavy forwarder, so we have the ability to truncate a certain part of o... by FIS1 Explorer in Splunk Search 11-08-2018 0 7 | 0 | 7 | |
| | I am trying to run the following search, which works fine from the regular Splunk search UI, but not in the Powershel... by dchallis2017 New Member in Splunk Search 11-08-2018 0 0 | 0 | 0 | |
| | Hello everybody, In my dashboard i have two input fields Primary_field =* Secondary field=* my current search looks... by alex_kh Explorer in Splunk Search 11-08-2018 0 3 | 0 | 3 | |
| |  I have the sample data which has all the fields like below [11/07/2018 09:59:00] CAUAJM_I_40245 EVENT: ALARM... by vrmandadi Builder in Splunk Search 11-08-2018 0 7 | 0 | 7 | |
 | I'm new in Python, so i have this string: info1= "Jose Maria Almeida;00351 962341234;1997-12-19" I'm trying to ge... by stewiefre New Member in Splunk Search 11-08-2018 0 2 | 0 | 2 | |
 | We have a bunch of hosts. Some of them are kind of like duplicates in that they are just the host name, and some are ... by CMSchelin Path Finder in Splunk Search 11-08-2018 0 2 | 0 | 2 | |
| | Hi, I'd like to calculate the average latency (_indextime-_time) with the tstats command, but I can not make it work... by ctaf Contributor in Splunk Search 11-08-2018 0 5 | 0 | 5 | |
| |   Hello , I am writing one query in Splunk to retrieve the events from a JSON log file. I am getting one value of a ta... by darshana2511 New Member in Splunk Search 11-08-2018 0 2 | 0 | 2 | |
| | I have raw information as follows: Two times Kaspersky output within one 'section' ---------------------------------... by edwinmae Path Finder in Splunk Search 11-08-2018 0 3 | 0 | 3 | |
 | Hi at all, I searched through past answers, but I couldn't reach to adapt some of them to my data: I have JSON data... by gcusello SplunkTrust  in Splunk Search 11-08-2018 0 1 | 0 | 1 | |
| | Hi I need your help for the following: I have 2 lists: I want to detect when an item is in the list B and NOT in ... by ESMaletMa Explorer in Splunk Search 11-07-2018 0 6 | 0 | 6 | |
| | Hello experts, I am new to Splunk. I have a file with below values. I have Indexed time as well. I need to write a ... by naomibn Explorer in Splunk Search 11-07-2018 0 1 | 0 | 1 | |
 | Hi I am using transpose command (transpose 23), to turn 23 rows to column but I am getting table header as row 1, row... by marellasunil Communicator in Splunk Search 11-07-2018 0 7 | 0 | 7 | |
| | index=monthly_budget | chart sum(TOTAL_BUDGET) over sports_category by department limit=0 | transpose 0 header_field... by rajyah Communicator in Splunk Search 11-07-2018 0 11 | 0 | 11 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #search-help Slack channel
Get Expert Help at Community Office Hours
Join the #search-help Slack channel
Become An Expert
Top Labels
-
administration
3 -
alert action
3 -
alert condition
2 -
Analytics Workspace
2 -
authentication
1 -
chart
943 -
Classic dashboard
1 -
configuration
2 -
correlation search
1 -
count
1,003 -
Dashboard Studio
3 -
data
3 -
data model
1 -
development
6 -
distributed search
1 -
drilldown
1 -
email
1 -
eval
2,608 -
field extraction
2,015 -
fields
2,060 -
host
1 -
index
4 -
indexer
2 -
inputs.conf
1 -
intermediate forwarder
1 -
introduction
5 -
join
1,057 -
JSON
2 -
Linux
2 -
login
1 -
lookup
1,562 -
metadata
307 -
monitoring console
2 -
other
149 -
panel
2 -
PDF
1 -
Python
1 -
regex
1,497 -
report acceleration
2 -
rex
1,246 -
SAML
1 -
saved search
5 -
scheduled search
4 -
scripted input
1 -
search
2 -
search head
3 -
search job inspector
680 -
search peer
1 -
simple XML
1 -
source
1 -
sourcetype
4 -
Splunk Web Framework
1 -
splunk-assist
1 -
splunkd
1 -
stats
3,557 -
subsearch
1,721 -
summary indexing
4 -
table
1,749 -
time
1 -
timechart
1,156 -
transaction
451 -
transforms.conf
1 -
troubleshooting
8 -
tstats
566 -
universal forwarder
5 -
using Splunk Cloud
2 -
using Splunk Enterprise
13 -
Windows
3
- « Previous
- Next »
Get Updates on the Splunk Community!
Data Management Digest – December 2025
Welcome to the December edition of Data Management Digest!
As we continue our journey of data innovation, the ...
Index This | What is broken 80% of the time by February?
December 2025 Edition
Hayyy Splunk Education Enthusiasts and the Eternally Curious!
We’re back with this ...
Unlock Faster Time-to-Value on Edge and Ingest Processor with New SPL2 Pipeline ...
Hello Splunk Community,
We're thrilled to share an exciting update that will help you manage your data more ...
