Splunk Search

Ask a Question

Discussions

Thread Info

Change base search based on dropdown

Is there a way other than using the panel depends to display based search depending on a dropdown? Dropdown <i...

by Path Finder in

Regex for CIDR exclusion

Hi, Need some help with getting a correct Regex for CIDR exclusion. *(This is an example. Not the real IP range...

by Path Finder in

The bug of fields extraction in Splunk Web

Hi, Splunkers: I found a bug of fields extraction in Splunk Web like following picture: As you can see, I was ext...

by Path Finder in

transaction: inconsistent results

The following two logical events are supposed to be one as they share the same threadId - but instead they are split ...

by Contributor in

Why is my search slow when performed in a dashboard and fast when entered directly into the search box?

Dear All A search command that performed directly under "Search" takes 10-12 sec, takes 2 Minutes and 30 sec to co...

by Builder in

I need to know which index and app has been access how many time in last one month

I need to know how many time all the indexes in my splunk has been accessed in last 30 days by app name(I tried so ma...

by Loves-to-Learn in

How to create dynamic inputs using lookup

I have a dashboard that shows 3 priorities/3panels -Critical, high, low. the dropdown Input is hardcoded using certai...

by Explorer in

how to compare avg server response time with the one from the current day?

Hello, here is what I try to do: I want to know if my todays average duration is slower or faster than my average ...

by New Member in

How to correctly use mstats rate() without listing all dimensions in BY clause?

I have a monotonic counter metric named http_req and my metric data points are tagged with path and host dimensions, ...

by Explorer in

issues with escaped quotes and index extrations with regex

ok, so I am trying to pull some fields from the following log file entry: "127.0.0.1",11/21/2019 8:19:49 PM,11/21/...

by New Member in

Need to find query from mobile(Android, IOS) device

Hello, I am new in Splunk, Looking for result which is coming from Android and IOS devices, seeing android and IOS...

by Explorer in

Why are some of the fields showing ascii hex values for string after I get CEF stream data into splunk using cefutils?

Using cefutils I am able to get CEF stream data into Splunk. The issue is some of the fields are showing ascii hex va...

by New Member in

python3.7, splunk 8.0, OS-RHEL8, when running scripted input getting error import BS4

Change the python varaible to phython3 and ran the following commnad dnf install python3-pip dnf install python3-b...

by Path Finder in

How to search the peak CPU usage and duration of that peak usage for each machine from Windows performance logs?

I am getting performance logs from several Windows servers. The value field shows the % of usage for each machine. I ...

by Explorer in

Need to combine nearest _time values for each field

Hi Splunker, In my application when there is action, 3 events will be created for it. Eg : _time ...

by Path Finder in

Get Updates on the Splunk Community!

Splunk Search

Discussions

Change base search based on dropdown

Regex for CIDR exclusion

The bug of fields extraction in Splunk Web

transaction: inconsistent results

Why is my search slow when performed in a dashboard and fast when entered directly into the search box?

I need to know which index and app has been access how many time in last one month

How to create dynamic inputs using lookup

how to compare avg server response time with the one from the current day?

How to correctly use mstats rate() without listing all dimensions in BY clause?

issues with escaped quotes and index extrations with regex

Need to find query from mobile(Android, IOS) device

Why are some of the fields showing ascii hex values for string after I get CEF stream data into splunk using cefutils?

python3.7, splunk 8.0, OS-RHEL8, when running scripted input getting error import BS4

How to search the peak CPU usage and duration of that peak usage for each machine from Windows performance logs?

Need to combine nearest _time values for each field

Enterprise Security Content Update (ESCU) | New Releases

Announcing the 1st Round Champion’s Tribute Winners of the Great Resilience Quest

We’ve Got Education Validation!

Issue with using "search IN" command within map

Users with the same roles, in the same app, and sa...

auto_generated_pool_download-trial

Automatic lookup during data ingestiont (Splunk cl...

Working with OpenTelemetry Cumulative Histogram Bu...