Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
48 results
Sorted by:
03-07-2012
12:50 AM
I just noticed, that I have to add the 'typer' command to a search in a dashboard so my cusotm event renderer is active for non admin Users. Is there some documentation that explains when and how e...
09-19-2014
08:36 AM
I have created a field using the rex command. I have partioned the field into two parts: admin and spss_user. However when I try to search for non admins (tag!=admin), I still get both admin and non_...
12-10-2010
05:28 PM
I would like a list of all eventtypes associated to an IP on a single table. Is there a way to perform this?
I would like to have a list like.
ip=1.1.1.1 eventtype=google,maps,yahoo,amazon
- Tags:
- eventtypes
01-05-2018
12:57 AM
I have a correlation search that includes the field host and is enriched with all the usual fields such as host_nt_host, host_ip, etc from using the get_asset macro.
I know that the host field in ...
05-08-2014
04:58 PM
2 Karma
...own:
(...)
05-08-2014 02:02:52.892 INFO SearchParser - PARSING: typer | tags
05-08-2014 02:02:52.908 ERROR SearchParser - Could not find macro 'ns_index' that takes 0 arguments. Expecting s...
05-30-2016
07:53 AM
1 Karma
I need to create a field aliase by event type. I saw that it is possible to reference an eventtype from the props.conf:
http://docs.splunk.com/Documentation/Splunk/6.3.1/Admin/Propsconf
I am runn...
10-31-2017
05:43 AM
6.5.2を使っていますが、昨日まで速く実行できたサーチでも、今日になって急に遅くなりました。
事象の特定としては、
1. サーチは、どのユーザから実行しても遅くなっている。
2. ブラウザのキャッシュを削除してからでも、サーチは遅い。
3. 他のクライアント端末のブラウザから実行してみても、サーチは遅い。
4. index=_internalのような簡単なサーチを実行しても...
06-17-2010
09:06 PM
6 Karma
...xtracted, and disable the typer and lookups components by using dispatch.* settings in savedsearches.conf , but I'm trying to keep this question about understanding the execution cost info, and less a...
Show results in replies (3)
-
I did a little testing with command.search.typer. The bit of knowledge i gained was that it did...
-
...venttype should disable the typer or reduce it's time to nearly 0. (I found that this doesn't w...
-
fyi, there are now docs about the job inspector: http://docs.splunk.com/Documentation/Splunk/lates...
09-19-2016
10:43 AM
We have following log file which we need to import in Splunk:
"cdrRecordType","globalCallID_callManagerId","globalCallID_callId","nodeId","directoryNum","callIdentifier","dateTimeStamp","numberPa...
06-22-2015
04:23 AM
2 Karma
Hi everyone,
I am running Splunk 6.2.2 on a distributed setup with 3 search heads in a search head cluster and 4 non-clustered indexers. Splunk seems sluggish and I am trying to figure out why st...
