Hey Experts, I'm new to splunk and I'm trying to create a new lookup from data in a index=abc. Can someone please guide me on how to achieve this? Any help or example queries would be greatly a...
...ail_msg2* I have created a lookup file sample.csv with the following content Product,Feature,FailureMsg
ABC,DEF,fail_msg1
ABC,DEF,fail_msg2 I want to search if F...
...ilter this search with values of one field in a csv I import as lookup. Example: index="data" sourcetype="entities" | table EMAIL EXTERNAL_EMAIL CATEGORY And I have the inputlookup inputlookup 2...
Hi All,
I have lookup file with 2 columns, Col1 and SPL_Qry.
Each value in col1 will have associated Splunk query.
In Dashboard, if I select ant value from the Drop Down, associated Query s...
I have a CSV of URLs I need to search against my proxy index (the url field), I want to be able to do a count or match of the URLs. my csv looks like this (with the header of the column called kurl)...
Hi,
As asked in the subject I trying to figure out the difference between lookup input lookup because I don't think I get it.
in this research for example:
&n...
I have users.csv as a lookup file with almost 20K users. I'm writing a query for authentication events for a specific time range for all these users. CSV file has only one column with t...
Hello Splunkers,
Please if someone can help me with a Splunk query,
I have a list of IPs I imported in lookup table, I want to grab the FW traffic where dest_ip in the FW logs matches my lookup l...
Hi, The lookup field values must match the field values returned by the query, and the results must be shown as yes/no depending on whether the match happens. but we are unable to match and are u...
...able (.csv import) that is pulled into the query via the "lookup" command. The table has 4 possible "Attribute" values which range from "level-1-access" to "level-4-access". In the stats table, a given U...