Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
3,000 results
Sorted by:
10-15-2017
01:45 PM
...ours. not sure why I let it finish)
I figure that I could use this report to do quick research on users/logons that I might see in a new computer/logon alert (to be created). So I built a d...
a month ago
...low. Please recommend how can I optimize my query to get the results quickly. Please check the attachment for the query.
Labels
- Labels:
-
other
10-29-2013
10:01 AM
1 Karma
I'm trying to optimize a query joining multiple sourcetypes based on a key. I would appreciate any suggestions on how to speed it up.
I am trying to obtain a summary of the beacon-spans for an in...
05-06-2021
02:53 PM
Wondering if there is a reference guide to help me understand functions and terminology for Splunk Infrastructure Monitoring or IMM as part of the Splunk Observability Cloud offering?
Labels
- Labels:
-
Splunk Infrastructure Monitoring
01-25-2021
09:15 AM
Hi, I have a query that is giving me results in around 60-70 seconds I wanted to reduce the time, seems NOT is taking more time and my search is parsing for around 35-40 seconds. Please help me to optim...
Labels
- Labels:
-
scheduled search
-
summary indexing
12-18-2019
05:41 AM
...rror in segment CSC 06 1 1A TKA in element #2.
------ Error at <src/CBRMessageDecoders.cpp:121 Error in group Group id: _294728_G_CBR in element #3.
------ Decoding error in message AIRRQT 1...
09-27-2014
12:36 PM
...onumber(substr(IP,27,2))
| eval a=tonumber(substr(IP,29,2))
| eval a=tonumber(substr(IP,31,2))
| IP = a+"."+b+"."+c+"."+d
Someone know another method more efficient to do it optimizing the macro execution?
03-21-2019
06:40 AM
...3" AND subgroup=="26" | mvexpand secId_new | stats count by secId_new | rename secId_new as Avsnitt
THEN got this error when it runs over 1 year's data.
Any ideas?
Thanks in advance!
12-20-2018
07:42 AM
...lso all users who have logged in but not logged out
And finally users who have logged out in the given time frame.
I am not sure how can I use subsearches or xyseries to optimize this query.
