Splunk Search

Splunk Search
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Community Activity
ibob0304

How do I make a field value as a column heading?

I would like to display weekday in the column heading. |Search.... | eval weekday=strftime(now(),"%A") Output S....
by ibob0304 Communicator in Splunk Search 09-28-2018
0 3
0
3
iKate

Can you help me with Dedup events in a data model?

Hi everyone How do I leave just unique events by specified field in an accelerated data model? My base search looks...
by iKate Builder in Splunk Search 09-28-2018
0 0
0
0
rumman92

Why am I getting the following 'call not properly authenticated' error when using Splunk SDK for JavaScript?

Whenever I try to do a search query using Splunk SDK for JavaScript (using node), I get the following error message: ...
by rumman92 New Member in Splunk Search 09-28-2018
0 0
0
0
DataOrg

Can you help me change the table cell background color based on the value?

@kamlesh_vaghela please help me in updating the java script. Here is a post that is related to my query: https://ans...
by DataOrg Builder in Splunk Search 09-28-2018
0 11
0
11
drico618

Can you help me make a stacked column chart over time with totals for each row?

Let's say I have a lookup table and I have it formatted and "searched" down to: _time | Cat_1 | Cat_2 ...
by drico618 New Member in Splunk Search 09-28-2018
0 2
0
2
victor_menezes

Working on "snoweventstream" in a subsearch - Any thoughts?

Hi guys, I'm trying to control whenever I have to send an event to ServiceNow or not, and that's what I've done so f...
by victor_menezes Communicator in Splunk Search 09-28-2018
0 2
0
2
iambobwall

How do I cut a string after a certain text and count the results of the string before the cut?

Here is my current search in Jboss Logs: index=jboss_app CLASS="foo.bar.bas.classname" MESSAGE="Error doing the thin...
by iambobwall New Member in Splunk Search 09-28-2018
0 2
0
2
mbodtkerj

Can you help me with my custom dynamic field extraction?

Hi, looking for some help on this one. I have multi-line events that I'm trying to create dynamically named fields fr...
by mbodtkerj New Member in Splunk Search 09-28-2018
0 7
0
7
ADRIANODL

How do I remove gaps in charts?

Hi splunkers, I was able to plot a graph that, whilst it shows all the info I need, it also contains massive gaps th...
by ADRIANODL Explorer in Splunk Search 09-27-2018
0 7
0
7
a212830

How do I search for Chinese characters in Splunk?

Hi, I need to create a report that looks for certain terms in Chinese. Is there anything special that I need to do ...
by a212830 Champion in Splunk Search 09-27-2018
0 2
0
2
johnny_goya

How can i get the first event after match a event?

I want to make a search that match for a event, than get the next event. Example: Event1 _time event_hash status_la...
by johnny_goya Explorer in Splunk Search 09-27-2018
0 2
0
2
seomisp

Can you help me with my join query?

I'm having trouble with a join query. It doesn't work with the inner or left join, although I can see the event from ...
by seomisp Explorer in Splunk Search 09-27-2018
1 14
1
14
puneethgowda

How to troubleshoot error "Configuration initialization for C:\Program Files\Splunk\etc took longer than expected (1869ms) when dispatching a search"?

Why are we getting this error and how do we fix this?
by puneethgowda Communicator in Splunk Search 09-27-2018
1 5
1
5
pkumar9610

Why can't I find logs under _internal Index when I'm able to see in them in actual Index?

Hi friends, I am using the below search query to see the usage of a specific Index. When I pull the search for 30da...
by pkumar9610 Explorer in Splunk Search 09-27-2018
0 5
0
5
cboillot

What is the best way to count events and calculate the disk space these events use?

So, the first part of this is really easy. index=active_dir | stats count by EventCode This will give me the a lis...
by cboillot Contributor in Splunk Search 09-27-2018
0 4
0
4
responsys_cm

Is it possible to compare equality of two fields at the root search without using | search, | where, or | eval?

I'm trying to work around the limitations of data model root searches not supporting pipes. Is there any way to do s...
by responsys_cm Builder in Splunk Search 09-27-2018
0 6
0
6
joesrepsol

How to search for specific text in field without additional text?

Sorry for the strange title... couldn't think of anything better. Doing a search on a command field in Splunk with va...
by joesrepsol Path Finder in Splunk Search 09-27-2018
0 4
0
4
sandeepmakkena

Can you help me create a pie chart that would display info from a CSV Lookup file?

I created a .CSV file with error_code and Description. I am trying to compare error_code with the logs and create a p...
by sandeepmakkena Contributor in Splunk Search 09-27-2018
0 25
0
25
danielearangiom

How to use a list of values from a table into foreach fieldstr?

Hi, I already used the following lines with success: | foreach fieldstr=device "device_name1" "device_name2" "device...
by danielearangiom Explorer in Splunk Search 09-27-2018
0 1
0
1
kasturea

I want to see Number of hits from an IP address on a particular url in a minute

I am looking for result which will show, number of hits on a URL from a particular IP address in a minute. For exampl...
by kasturea Explorer in Splunk Search 09-27-2018
0 1
0
1
reneedeleon

How do I pull a stats table where there are blank fields in event data?

This is the event data: ls1=INFO ls1Label=Severity ls2=MS SQL SERVER ls2Label=ServerType ls3=Command List ls3Label= c...
by reneedeleon Engager in Splunk Search 09-27-2018
0 3
0
3
jospina2

Splunkd service wont start on Windows Server (handler/weak reference error)

Has anyone encountered this error before? Our splunk instance is completely down. 08-10-2018 12:45:50.153 -0700 INF...
by jospina2 Explorer in Splunk Search 09-27-2018
0 2
0
2
macoo

How to search a field for values that are stored in another field?

Hi, Can you please help me with the following case? I'm trying to use the value of a field to search within the valu...
by macoo Explorer in Splunk Search 09-27-2018
0 6
0
6
michaelrosello

How do you reference a field value as a field to use in a table?

So I have a field day_Today=Friday Now I want to use the value of day_Today as a field in my table | table Date va...
by michaelrosello Path Finder in Splunk Search 09-27-2018
0 3
0
3
Shan

How to extract data using regex?

Hi All, I Have data in below mentioned format. I need to extract value CUP_Used and cup_used using regex and store i...
by Shan Builder in Splunk Search 09-27-2018
0 5
0
5
Top Labels
Get Updates on the Splunk Community!

Data Management Digest – December 2025

Welcome to the December edition of Data Management Digest! As we continue our journey of data innovation, the ...

Index This | What is broken 80% of the time by February?

December 2025 Edition   Hayyy Splunk Education Enthusiasts and the Eternally Curious!    We’re back with this ...

Unlock Faster Time-to-Value on Edge and Ingest Processor with New SPL2 Pipeline ...

Hello Splunk Community,   We're thrilled to share an exciting update that will help you manage your data more ...