Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
51 results
Sorted by:
08-03-2017
10:20 AM
This is driving me nuts because I use strptime all the time and have many of my own working examples to reference.
I was having a problem doing strptime with a more complex date that wasn't w...
08-05-2014
10:51 AM
1 Karma
I need to do the following:
Get a distinct count of serial numbers where a selected date falls within a particular range. Figuring out if a serial number is valid per table row is easy:
eval i...
01-21-2015
11:37 AM
I have the following data. Each one has a different date entry.
DATE ACCOUNT_NUMBER SOLUTION NAME ADDRESS
1-1-2015 1 Replaced NAME1 ADDRESS1
1-1-2015 2 R...
04-21-2011
04:59 AM
4 Karma
...nstall such functions because of performance issues.
In version 4.2 I found a new command mappy which allows to run short python scripts but looks like it does not support all python modules and options....
- Tags:
- anonymize
09-11-2014
07:13 AM
2 Karma
I know how to get the week day from raw events, the week day is stored in the field date_wday.
However, I wonder if there's a function to compute the week day from an epoch time, as I want to get i...
04-26-2018
08:28 AM
Here is my date format I would like to convert to epoch for later processing.
My date formate is: 3/5/2018 17:03
My commands below:
| gentimes start=-1 | eval myDate="3/5/2018 17:03"
| c...
10-02-2019
02:06 AM
I have a saved search that has a time range of All time. The saved search contains eval and stats functions that I want to apply to certain time ranges only. The saved search is All time b...
03-29-2018
01:05 PM
...OLDING_DIR="${SPLUNK_HOME}/old-dispatch-jobs"
CLEANUP_CMD="${SPLUNK_HOME}/bin/splunk cmd splunkd clean-dispatch"
OUTPUT="${SCRIPT_ROOT}/dispatch.out"
# Functions
reset() {
# setup for a c...
05-22-2020
06:06 AM
Hi Experts,
In this search i want to fetch results only from last 30 days to current.
taken_date is one of the field which has got date&time.
max_col1 has got the highest(latest) date...
Show results in replies (3)
-
The statement "The date&time functions which work only on _time" is incorrect. The data and time...
-
...ld. The date&time functions which work only on _time and current time(now()) etc, would not w...
-
...he date&time functions which work only on _time and current time(now()) etc, would not work in t...
09-04-2018
03:13 AM
Hello,
I have a field called in_time with example output = 8/31/2018 10:21:59 PM (GMT)
I'd like this time (e.g. out_time) to be extracted and converted to read 31/08/2018 22:21:59
Can you h...
