Hello Splunkers!!
I want a list of dashboards and those dashboards are using saved searches & macros. How I can achieve those details by using rest command. So far I have tried the b...
Hi @all,
I'm a little bit helpless at the beginning of SPLUNK.
I tried to do simple queries like:
Request statuscode and make a timechart with
index="name" | timechart count(h...
Hi - I am indexing a JMX GC log in splunk. It has following entries
29800.962: [Full GC 29800.962: [CMS29805.756: [CMS-concurrent-mark: 8.059/8.092 secs] [Times: user=11.76 sys=0.40, real=8.09 s...
Now I'm doing a port scan alert Policy.
Port scanning is a hacker's attack method。I can see its activity track in the firewall。I can see the source IP(scan_sip), source port and destination IP(sca...
Hello, I am trying to create a kvstore that I can use in a | inputlookup and / or | lookup SPLcommand. I can create a KVStore using the python SDK, but it can not be used with the above command...
User with these capabilities fails, but ADMIN user works.
This SPL works fine when logged in as ADMIN, but does not work when logged in as a poweruser account. What capabilities do I need to t...
I noticed that timewrap came up as suggested SPLcommand in a Splunk 6.5 search box (see attachment). The command does seem to work. I do not have the timewrap app installed on this system.
I...
Hello,
Novice, but getting better. I am searching the Internet, Splunk Docs, and Splunk Answers for an answer. Meanwhile, I figured to post my issue.
After the general search commands (index, s...
...P address=10.3.36.10][Device type=11]
Splunk extracts fields named:
My_Port, Device_name, Device_IP_Address, Device_type
Is there a props extract that will do the same as an automatic e...