cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
akke
Explorer
Member since: ‎09-28-2019
‎06-05-2020
Community Statistics
Posts 4
Solutions 0
Karma Given 5
Karma Received 0
Member Since ‎09-28-2019
Activity Feed
View All

How to search csv for values in a lookup table?

by in Splunk Search
‎10-07-2019 06:19 AM
‎10-07-2019 06:19 AM
I have a large csv with lots of columns and a lookup table below payload *.exe *.zip *.7z How do I search all fields for values in my lookup table? For example I want to look for values like "badfile.exe". ... View more

Is it possible to search for a value in ALL column...

by in Splunk Search
‎10-03-2019 02:44 AM
‎10-03-2019 02:44 AM
I have a known value (eg. "rabbit") that I want to search for but it is in a unknown column in a large csv. Is it possible to do something like: index = "index" | where * == "rabbit" "*" being a wildcard of sorts. ... View more

Re: How to count total number of events from 2 fie...

by in Getting Data In
‎09-28-2019 06:56 AM
‎09-28-2019 06:56 AM
It works perfectly! Thank you! ... View more

How to count total number of events from 2 fields ...

by in Getting Data In
‎09-28-2019 03:11 AM
‎09-28-2019 03:11 AM
I have a .csv with fields tcp_srcport, and tcp_dstport. I want to find the total amount of traffic using each port. For example Query 1: index="index" | stats count by tcp_srcport Results: tcp_srcport | count 22 6 80 54 Query 2: index="index" | stats count by tcp_dstport Results: tcp_dstport | count 22 1 80 73 However, what I'm looking for is: Traffic per port | count 22 7 80 127 How do I do this? ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM
Karma given to