Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
11 results
Sorted by:
12-12-2017
09:46 AM
...ith the results of a search, but in this case the data summary is actually a special summary index that is built and stored on the search head. Use summary indexing for increased reporting efficiency s...
- Tags:
- acceleration
- login
12-30-2019
03:59 AM
...m a bit confued when to use the collect command.
I have configured the search (report) with the summary index, but nothing happened...
What am I doing wrong?
Labels
- Labels:
-
summary indexing
07-19-2012
10:16 AM
3 Karma
Hi there!
Is there a search command that will allow me to look up results from a "saved result"? I'm looking for ways I could speed up my populating search. My populating search is taking too l...
09-27-2017
12:43 AM
...o i want to use summary index for improving the performance.
As summary index run's fast searches, My requirement is, i want to use the regular index for capturing today's data and for last 6 d...
03-30-2015
12:38 AM
I am trying to make a summary index for data in April 2014.
Using the current default search and joins, and to query more than 25 GB of data takes more than 35 seconds of time.
I want to use a...
- Tags:
- summary-index
08-31-2018
03:46 AM
Hi,
I have a search that will fetch about 5 GB of application logs. In order not to put load on the Splunk instance and slow search output, i am planning to use "Summary Indexing" using the new S...
12-11-2012
01:42 PM
Can you tell me the step by step procedure to create summary Index.
That too I am not sure what search query to use that will come with a lots of data.
01-07-2015
02:32 PM
1 Karma
...f i use collect - it doesn't seem to do exactly what i want. i see collect saves the data, but it is in the original form - less any renames, evals, etc; ignoring the fields statement which outputs o...
06-26-2015
07:40 AM
I try to use summary indexing to improve search efficiency, but it's resulting in an error because of the wrong _time value.
Event timestamp 6/9/15 10:59:54.960 PM is reset to 6/9/15 12:00:0...
11-07-2016
06:49 PM
If my index is set for 30 day retention, is it possible to have a data model summary for a longer period? Is the data model storing its... cumulative .. results separate from the index?
Thanks.
