Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
417 results
Sorted by:
05-22-2016
03:11 PM
I'm running into an issue with the syntax for a CLI search using erex.
The problem seems to be with the double quotes. I've tried single quoting the erex examples and counter examples, but none o...
01-12-2021
07:42 PM
...orrect my syntax, i tried google searches but none were able to give me an example, which I think is due to the fact I do not know how the syntax should work in the first place. I am using the windows c...
Labels
- Labels:
-
stats
02-06-2014
03:21 PM
2 Karma
Hi,
As my search strings get more and more ridiculous, I find myself writing them in sublimetext or notepad++ or vim as a cribsheet and then putting the final product into Splunk. Does anyone k...
08-11-2020
08:55 AM
Getting this informational message when running "stats count" commands: This search uses deprecated 'stats' command syntax. This syntax implicitly translates '<function>' or '<function&g...
Labels
- Labels:
-
stats
04-10-2012
03:23 PM
1 Karma
...assword for both the local and remote machines are not changeme.
5) I am running the command on the local machine that I expect to the be search head.
6) Within the local server.conf, I have s...
06-11-2020
07:42 AM
Hello, I try to export a large log with CLI search below. It works well with a smaller log return, but giving error on large logs, FATAL: The search job terminated unexpectedly. For in...
Labels
- Labels:
-
other
10-07-2019
08:09 AM
This cli search command works from a machine with a universal forwarder:
splunk search "index="foo" earliest=-7d | sort -SensorDateTime | stats first(SensorDateTime) by bar" -preview false -u...
08-13-2020
10:00 AM
Running a sample search suggested by " Add sparklines to search results " in Splunk Documentation for the latest version (8.0.5 as of this writing): index=_internal | chart sparkline count b...
- Tags:
- deprecated
- syntax
Labels
- Labels:
-
stats
05-18-2011
01:06 PM
1 Karma
What is the syntax, please?
