Splunk Search

Community Activity

Searches cancelled remotely or expired I am currently running Splunk Enterprise 6.5.2, though this problem has persisted in one of our instances for a bit. ... by tlabue Path Finder in Splunk Search 10-31-2018 2 4	2	4
I have created a panel of bubble chart in that how to adjust the height to appear that in center The top and bottom bubbles are cropped how to get the original bubble shape by anirudhgowtham Loves-to-Learn in Splunk Search 10-31-2018 0 0	0	0
Query in Verbose mode results but while finalising in Fast mode, the results arent displaying ? Hi, I have a query which finalises me all JSP pages performance for every month. It provides me correct result in Ve... by sangs8788 Communicator in Splunk Search 10-30-2018 0 3	0	3
How to pass list of values from the first search into the second search ? Here is what I do to get required search results using two separate searches: SEARCH#1 I use the following query ... by raylex_splunk_d Explorer in Splunk Search 10-30-2018 0 14	0	14
How do you put a single row of key value pairs into one line from multiple rows? I have looked at various answers, but don't seem to be grasping what seems like it should be easy enough to do. Some ... by lylereger New Member in Splunk Search 10-30-2018 0 1	0	1
Dedup within a time range I need to chart the sum of the values of a field by the value of another field over time (e.g. the sum of values of f... by eolg New Member in Splunk Search 10-30-2018 0 4	0	4
How do you create a field value and pass it to a map? So, the reason I am looking to do this search is because the logs for this system are not the greatest and, therefore... by JakeInfoSec Explorer in Splunk Search 10-30-2018 0 0	0	0
How do you run the stats count against multiple columns? Hi all, I'm trying to find a way to combine multiple searches into 1, but all efforts have failed. I'd like to run ... by splunker1981 Path Finder in Splunk Search 10-30-2018 0 3	0	3
How do you sum a field for requests that fail to meet a threshold? I am trying to calculate the percentage of requests that fail to meet a threshold. Log events from this app are writt... by bearlmax New Member in Splunk Search 10-30-2018 0 2	0	2
How do you make a chart with repeating x axis values? Hi all, I have 2 columns like that I want to plot: x y 1579 1 1707 2 1707 3 1707 4 1707 5 1707 6... by sriharsha14 New Member in Splunk Search 10-30-2018 0 2	0	2
How do you add percentage of total for several columns in a table? Hi all, I'm quite new to Splunk and I'm struggling trying to add percentages to a table that I built from two indexe... by alessandrocicch Engager in Splunk Search 10-30-2018 0 3	0	3
Why when I refresh splunk I loss data ? Hello, I filll a table which has more than 60 columns and 1000 lines. But at 10am for example, all the columns exc... by FlorentNall New Member in Splunk Search 10-30-2018 0 3	0	3
How do you compute the average number of emails contained in two different sources? I have two different sourcetypes with same index name. Both sources they have emails and it shows the number of those... by maryamchar Explorer in Splunk Search 10-30-2018 0 4	0	4
Can you help me with the following query using the join command? Hi everybody, I have a problem with a join between two indexes. For example, I have 2 values: A and B, which are o... by MaximeMoreau Explorer in Splunk Search 10-30-2018 0 7	0	7
How to pass eval value as macro parameter where my search query starts with macro itself We have created reusable macro which was used in many reports with 3 parameters and that macro is starting point of ... by sainadh1247 New Member in Splunk Search 10-30-2018 0 2	0	2
How do you search for the nearest file within 7 days ago of another file? Hello everyone, I'd like to create a bottleneck graph. Basically, I'd like to use two files. One of the files is a... by jenny_life Path Finder in Splunk Search 10-30-2018 0 4	0	4
How do you extract the value of output quality from the log below? I want to extract the value of Output Quality from the below log. Critical-Lab checkRcReady for batchId ==>9a508f01-... by abhishekgandhe Explorer in Splunk Search 10-30-2018 0 3	0	3
Parsing fields inside quoted fields Hi, at search time I like to pase the key-value pairs inside the message and would like to have the whole message in ... by tfechner Path Finder in Splunk Search 10-30-2018 1 1	1	1
AND Condition to find the keywords in logs I have log. I want to find all 4 keywords. It should be AND condition and not OR. Critical Lab Lab Critical Process P... by abhishekgandhe Explorer in Splunk Search 10-29-2018 1 6	1	6
How to Drilldown stacked column chart to a table? Hi All, I need to show a drilldown report when user clicks on any of the column bar. Each bar has 3 sentiments (Posi... by aravindpadmin Explorer in Splunk Search 10-29-2018 0 5	0	5
how to group by month for yearly data. Hello everyone. Want to display the output only for the time which crosses 18 months (earliest time) by rajhemant26 New Member in Splunk Search 10-29-2018 0 3	0	3
What rex can I use to extract a value before a string near the end of an event? I need to extract the value where "SoftFail" from this example log is. In related logs, the value is always after an... by octavioserpa New Member in Splunk Search 10-29-2018 0 5	0	5
When using the timechart command, how do you show multiple Max Values? Hi Splunk Community! Quick one for all you experts! I'm trying to timechart the following 4 separate metrics (repres... by luckyman80 Path Finder in Splunk Search 10-29-2018 0 1	0	1
How do you regex a part of a field name to use in a separate field? I have a field which is a username, but the results of the username starts with "USR" and the actual username is "USR... by barney00 New Member in Splunk Search 10-29-2018 0 2	0	2
What is wrong with my eval for this token? Hi, I have this eval for a token but it doesn't ever seem to get set, what am I missing? <eval token="showapppages"... by dbcase Motivator in Splunk Search 10-29-2018 0 5	0	5