| | Does maxresults in limits.conf have an effect when piping results to the stats command? For example, if I run a sear... 2 1 | 2 | 1 | |
| | I have millions of events being indexed by Splunk now and I suspect something is happening within my IT environment a... 1 1 | 1 | 1 | |
| | Hi Splunkers, I have a sample Perforce log file and I'm trying to extract the code contributors. Here is an example:... 2 2 | 2 | 2 | |
| | I created a snazzy new report that generates a chart, how can I add this to my dashboard? 1 3 | 1 | 3 | |
| | How do i use the same search strings in splunks UI on the command line? 0 4 | 0 | 4 | |
| | There are plenty of ways to specify the exact time range or maximum range between two events in a search. But I need ... 3 1 | 3 | 1 | |
| | explain the significance of the connected flag in transaction 2 1 | 2 | 1 | |
| | Dan Goldburt asks: I'm consistently getting the following request from customers: "can I see where each event came fr... 1 1 | 1 | 1 | |
| | When attempting to make a Simple Form Search using the Developer Manual documentation, I encounter the error: Not... 0 1 | 0 | 1 | |
| | On the page 'Manager > Searches and reports,' enabled scheduled searches have a 'View Recent' link. I have 2 schedul... 1 9 | 1 | 9 | |
| | Such a helpful command, and yet doesn't work for me... 1 3 | 1 | 3 | |
| | When I run this search - source="*conn.log" | rex field=_raw "\.IP = '(?<connectionIp>[^']+)" | fields host, connect... 4 1 | 4 | 1 | |
| | We are attempting to create a report that compares message traffic for the past two complete weeks. We have this as... 0 2 | 0 | 2 | |
| | Any recommended best practices for managing eventtypes and their corresponding tags? I've found the Splunk Common In... 0 2 | 0 | 2 | |
| | What is wrong with this regex? (?P<AUTH_PIN_TYPE>[^ ]+)( [^ ]+){2}$ The interactive field extractor gives this err... 0 5 | 0 | 5 | |
| | I am using the transaction command to sessionize web access log events and therefore have made referer, uri etc. into... 4 3 | 4 | 3 | |
| | Let say I have events coming in everyday and I want to group the events as Monday's events, Tuesday's events, and so ... 1 2 | 1 | 2 | |
| | Use Case: Find Juniper firewall events where the source/destination IP (Src_Zone/Dst_Zone) does or does not belong in... 5 5 | 5 | 5 | |
| | Use Case: Correlate logon events from a Windows desktop to events on the domain controller. Sample (shortened) event... 2 9 | 2 | 9 | |
| | I've got an application that logs status events. The values in these events generally will not change. Is there a s... 1 1 | 1 | 1 | |
| | What is wrong with the way I'm using eval here? source="/some.audit.log" "End" "/foo/baz" | rex field=_raw "(?P<ReqI... 0 5 | 0 | 5 | |
| | I have a report on my dashboard that takes a very long time to build, how can I use summary indexing to improve the p... 0 3 | 0 | 3 | |
| | Sometimes I come across an event in my index that I'd like to refer to later, either as part of an investigation or t... 1 3 | 1 | 3 | |
| | I have a saved seach setup to check every minute for file changes. I have the start time set for [-1m] to search bac... 2 1 | 2 | 1 | |
| | I have a log which often has redundant events, where "redundant" is defined as 2+ events, on subsequent lines, where ... 0 2 | 0 | 2 | |
