Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
9,000 results
Sorted by:
03-02-2021
03:43 PM
Hello All, I am not so familiar with regex, but looking at some old query have been able to build one for my need. I am looking for help to understand how this is working in terms of r...
Labels
- Labels:
-
using Splunk Enterprise
Show results in replies (4)
-
To know whether a regex works or not requires knowing the text it is trying to match. P...
-
...haracters needed to match the regex.
-
...atching text will fill. 2. The regex wildcard character is . (full stop). The a...
-
...ere on" - I am assuming this regex and nothing to do with Splunk itself. So I tried to use this c...
02-05-2021
09:35 AM
hey all looking for some help pulling some digits via regex. I am looking to pull the numbers directly after Actual value(in the example event below 48). I would like to exclude the quotes and c...
Labels
- Labels:
-
regex
3 weeks ago
Hi, I have the below event where i tried to extract field ServerA Event: ADMU0509I: The Application Server " serverA " cannot be reached. It appears to be stopped. Que...
Labels
12-10-2020
04:33 AM
HI All, I have this JSON file that is 4400 Long , and i want it to reroute to a specific Indexer. If i use REGEX101 - the regex will work, but when applied to Splunk - It does not reroute t...
- Tags:
- regex
11-03-2016
03:51 AM
Can someone explain me wht that simple regex means??
Sorry for this simple question but this is very new to me. I understand these..
^ --> refers to start of / position
+--> means one o...
- Tags:
- regex
01-08-2021
01:15 AM
Trying to Pick domainType and domainName from below log using the below regex: It works in regex101 but not in Splunk, it gives a blank column. domainName - rex"(?:domainName\\\"\:\\\")(?<d...
Labels
- Labels:
-
table
02-17-2021
09:33 AM
Hey All, I am trying to pull the username from the following event which is everything after the Rightnetworks\ in the event. Also to complicate things It could be a name or a set of numbers or a na...
Labels
- Labels:
-
regex
02-02-2020
09:53 PM
Which of the following (in terms of the REGEX) is the most efficient? I've seen examples of all of them. And is there an even more efficient REGEX?
[send_to_nullQueue_dot]
SOURCE_KEY = _...
02-02-2021
05:39 PM
Here is the regex to extract message_type based on CIM. Could anyone make this faster than 1387 steps? https://regex101.com/r/dHbs4i/1 (?P<message_type>[^.]query|response)\: &n...
- Tags:
- regex
01-26-2021
09:33 AM
Hello, I need a regex to extract the GUID from non-standard UPN results that show up in this format: ex095838d@mydomain.onmicrosoft.com First 2 characters: Will always be "ex". GUID: Is the n...
