| | Hello, I am trying to extract fields from an event which looks like this (I have multiple events) total time (ms): ... 0 3 | 0 | 3 | |
| | I have a scheduled save search that emails a PDF. When I looked at the PDF, it contained the following error: The f... 2 2 | 2 | 2 | |
| | Hey guys, We are monitoring 2 specific CSV Log files on one indexer. I setup the appropriate custom field extractio... 0 6 | 0 | 6 | |
| | Basically I have a line of data that looks like this: Jun 28 14:15:10 sc4-app04.mcafeesecure.com portal: ACCESS Clic... 3 3 | 3 | 3 | |
| | An auditor is requesting that we furnish them with a list of all servers logging to splunk and the index they are bei... 1 2 | 1 | 2 | |
| | I have splunk indexing a local file that is being continuously written to and I need the first word in each event to ... 0 4 | 0 | 4 | |
| | Search string "mismatch". The single event is about 2-3K lines or more. In the lines of text there are 5 lines with ... 1 6 | 1 | 6 | |
| | I need a regex that can process all security events with eventid 540 that don't contain $, SYSTEM, or ANONYMOUS LOGON... 0 2 | 0 | 2 | |
| | I am scheduling this search(Daily Indexed Volume): index=_internal source=*metrics.log splunk_server="*" | eval MB=k... 0 2 | 0 | 2 | |
| | Hello, I encountered errors which made some of my flash charts in form shows: Results Error: 400 - Encounte... 0 2 | 0 | 2 | |
| | I have a scenario where I would like to do a two-layered lookup. I'm essentially doing an IP address lookup against ... 6 4 | 6 | 4 | |
| | Below are the first 7 lines of a file that I want to index. The additional lines all look like line 7. Can I have it ... 1 2 | 1 | 2 | |
| | Hi, I want to customize a form search as it described in http://www.splunk.com/base/Documentation/latest/Developer/T... 1 1 | 1 | 1 | |
| | Can I use eventtype=myevent with |metadata? example: | metadata type=hosts | eventtype=group_A I know tags work, ... 0 1 | 0 | 1 | |
| | I have what I think should be a simple search, but I'm not quite able to come up with a way to do it. Ultimately I g... 1 3 | 1 | 3 | |
| | I'm trying to correlate start and stop events and having a much harder time than what the documentation implies in or... 1 5 | 1 | 5 | |
| | When we are browsing log files for problems, we often don't know exactly what we're looking for. But in a short peri... 0 4 | 0 | 4 | |
| | I installed the UI examples app and was working with Simple Forms > Multiple Inputs. When I view it, all of the cont... 1 1 | 1 | 1 | |
| | For 95% of my jobs the summary link fails with a fatal error "No summary is available for this job." https://1... 0 1 | 0 | 1 | |
| | index="whatever" INFECTION | top limit="15" misc by src When I attempt this search, the limit qualifier seems to be... 0 4 | 0 | 4 | |
| | Hello, I would like to filter a search result, of irrelevant data, to display less information so its easier to spot... 0 10 | 0 | 10 | |
| | I have a dashboard that I would like to have scheduled for delivery twice each day, once at during the end of the wor... 1 2 | 1 | 2 | |
| | i need to construct a form search in a dashboard that brings back the vpnpool ip address's of any username i type int... 0 1 | 0 | 1 | |
| | I have 4 servers in a distributed environment. I use server a to login and do the search. When I use the search | me... 0 2 | 0 | 2 | |
| | I have a number of searches updating summary indexes that I do not want to show up in my app' s navigation UI under S... 2 2 | 2 | 2 | |
