Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
1,000 results
Sorted by:
03-28-2019
04:39 PM
Hello Gurus,
I'm trying to generate a lookup from a search using the outputlookup option but running into some issues.
My search returns between 400 & 500 results on the Statistics tab, b...
11-22-2021
04:59 PM
...ommand to get new records in last 24hrs
| bunnch of evals to format data
| append
[| inputlookup MispKVstore]
| dedup
| outputlookup append=false MispKVstore We have this running 3...
Labels
- Labels:
-
search head
02-07-2022
05:06 PM
...rite the new email addresses to another lookup. The issue I have is that I get duplicates as this search runs once a week. Is there a way I can avoid duplicates using outputlookup? Dedup i...
- Tags:
- lookup
- outputlookup
Labels
- Labels:
-
lookup
08-04-2020
08:40 AM
Does anyone know how the outputlookup command is configured? commands.conf does not reference a python script for it. I want to change how new files are created so that they are private and a...
- Tags:
- commands.conf
- python
Labels
- Labels:
-
lookup
Show results in replies (5)
-
...bsp; [outputlookup] create_context = user per the documentation: [outputlookup] c...
-
...hat I have created that does what I want the outputlookup command to do but it would require all u...
-
Outputlookup is a built-in command without an external Python script.
-
...youtputlookup just as they once learned to use outputlookup.
-
Decided to resolve the issue by creating a custom command to reassign lookup files from nobody to t...
07-15-2015
02:09 AM
5 Karma
Could anyone tell me the difference between outputlookup and outputcsv?
If there no differences, is there any specifications to use the above in various circumstances?
Regards,
Naga
06-18-2020
01:08 AM
Hi,
I use a scheduled search in order to generate a CSV lookup automatically:
patch
| table Computer Site OSVersion
| rename Computer as host
| outputlookup...
Labels
- Labels:
-
other
-
scripted input
06-17-2010
08:19 PM
7 Karma
Does the outputlookup command overwrite or append to the existing specified lookup file? The documentation does not clarify: http://www.splunk.com/base/Documentation/latest/SearchReference/Outputlookup...
- Tags:
- command
- outputlookup
Show results in replies (4)
-
...he outputlookup myoldfile , e.g., stats count by host,hostip | fields - count | inputlookup a...
-
...estlookup.cvs | outputlookup testlookup.csv
-
It will overwrite. Because of this, the |outputlookup command is well suited to being used in s...
-
I'm not sure if you are aware of this issue(splunk 5), but when I've outputlookup with append=t...
12-01-2014
12:58 AM
ルックアップテーブルについて質問です。
outputlookup関数の引数において<tablename>がありますが、この場合「テーブルに書き込む」とのことですが、どこに持ちますでしょうか。
<filename>の場合は.csvファイルに書き込みますが、<tablename>でテーブルに書き込んだ場合はメモリ上に持つイメージになるのでしょうか...
