cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
using
Explorer
Member since: ‎06-18-2013
‎06-05-2020
Community Statistics
Posts 4
Solutions 1
Karma Given 16
Karma Received 6
Member Since ‎06-18-2013
Activity Feed
Topics I've Started
No posts to display.
View All

Re: How can I remove text from _raw if it appears ...

by in Splunk Search
‎08-16-2013 08:31 AM
2 Karma
‎08-16-2013 08:31 AM
2 Karma
I feel as though Splunk needs to have an easy way to identify values of a field inside of regex (added on to just perl re). This would make it easier to do a lot of things or at least give us more options. ... View more

Re: getting a mean of all search time and sum of a...

by in Splunk Search
‎07-11-2013 08:21 AM
1 Karma
‎07-11-2013 08:21 AM
1 Karma
I think you're on the right track try this: search_terms| bucket _time span=1m | stats count by punct,_time | join [search index=auth| stats count by punct| stats sum(count) by punct] ... View more

Re: getting a mean of all search time and sum of a...

by in Splunk Search
‎07-11-2013 07:52 AM
2 Karma
‎07-11-2013 07:52 AM
2 Karma
The "as scount" will give an error, it needs to be before the "by punct,_time". ... View more

Re: Difference between stdev and stdevp

by in Splunk Search
‎07-05-2013 07:50 AM
1 Karma
‎07-05-2013 07:50 AM
1 Karma
I have the same question as above but about var(x) and varp(x). ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM
Karma from
View All
Karma given to
View All