Search
Splunk Community
×
Are you a member of the Splunk Community?
Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
- Search
Search
Search the Community
12 results
Sort by:
07-29-2020
12:12 PM
I want to use the setfields command to set fieldA to a particular value. That value is located in fieldB. How can I make setfields take the value of the field rather then the field name....
Labels
- Labels:
-
fields
05-28-2019
01:16 PM
...unction but that's not exactly sure how it could help here.
A timechart of percentage difference would be ideal.
index="blah" earliest=-192h latest=-168h | setfields when='1 week ago' | eval _...
09-02-2024
07:10 AM
2 Karma
Hi All I did a look around for a syntax definition for SPL in Notepad++ and didn't find one. Attached is my attempt. Feel free to use. if you have any suggestions, changes etc then post a reply. Th...
spl.xml (7 KB)
03-27-2022
06:49 PM
...ime period of time 7am-8pm I have this query :
index="pcg_p4_datataservices_prod" sourcetype="be:monitoring-services"
| setfields a=a
| rex "^[^\|\n]*\|\s+(?P<kafka_datatype&g...
- Tags:
- fields
- splunk-search
03-24-2016
11:00 AM
...m (?<Name>.*)" | stats count Count by Name
Q2:
I already tried
I am | setfields Name = 0 | rex "I am (?<Name>.*)" | where Name != 0 | stats count Count by Name
Somehow it d...
- Tags:
- splunk-enterprise
03-03-2012
02:39 AM
...xcept adding to the end of the basic search a string:
...| setfields 30="30", 50="50", 70="70" | table 30 50 70 | head 1
But in my xml structure this table search replaces the main search a...
02-27-2018
10:32 PM
...his specific example I tried the following
| inputlookup datastore
| search [setfields server_ip="10.22.10.250" | lookup dnslookup clientip as server_ip output clienthost as server_fqdn | f...
- Tags:
- splunk-enterprise
01-28-2015
11:29 AM
In each log event, I have 3 fields that keep a record count of the number of rows inserted, updated and deleted. I am able to grab statistics on each of these fields (e.g. average, 2 standard deviati...
07-22-2017
10:52 PM
...s_expected,totalcount,yumdate | join yumclientip append [ search xxx yyy zzzz | setfields count="0" yumdate="NA" | stats count as totalcount by yumclientip, yumdate | fillnull value="(empty)" "totalcount" "y...
08-08-2021
10:43 AM
2 Karma
we are currently exploring splunkjs for rendering data in our custom app. we are able to authenticate and display charts based on searches directly from webapp but having difficulty in integrating wi...
Labels
- Labels:
-
chart
-
Dashboard Studio
-
javascript
