Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- About x3ncrypt
x3ncrypt
Loves-to-Learn Everything
Member since:
11-17-2021
01-08-2023
Community Statistics
| Posts | 11 |
| Solutions | 0 |
| Karma Given | 0 |
| Karma Received | 0 |
| Member Since | 11-17-2021 |
Activity Feed
- Posted Re: Correlating lookup table fields with index fields on Splunk Search. 01-08-2023 10:59 PM
- Posted Re: Correlating lookup table fields with index fields on Splunk Search. 01-08-2023 08:44 PM
- Posted Re: Correlating lookup table fields with index fields on Splunk Search. 01-08-2023 08:20 PM
- Posted How to correlate lookup table fields with index fields? on Splunk Search. 01-08-2023 08:01 PM
- Posted Re: Forwarders:Deployment // Duplicated Forwarders- Is there a workaround? on Splunk Enterprise. 09-29-2022 07:25 PM
- Posted Re: Unable to run certificate package version query for forwarders on Splunk Search. 05-03-2022 05:30 PM
- Posted Why unable to run certificate package version query for forwarders? on Splunk Search. 05-03-2022 05:29 PM
- Posted Re: How to monitor inactive sourcetypes(or inactive indexes) in Splunk? on Getting Data In. 01-23-2022 04:26 PM
- Posted Re: Monitor index activity on Dashboards & Visualizations. 01-20-2022 09:10 PM
- Posted Monitor index activity on Dashboards & Visualizations. 01-12-2022 08:06 PM
- Posted Search query on Splunk Search. 11-17-2021 07:37 PM
Topics I've Started
| Subject | Karma | Author | Latest Post |
|---|---|---|---|
| 0 | |||
| 0 | |||
| 0 | |||
| 0 |
01-08-2023
10:59 PM
That did not work.
... View more
01-08-2023
08:44 PM
Your query did not work. As mentioned, there is only one column I want to correlate, which is 'ip', with the 'src_ip' and 'dest_ip' fields in the 'netfw' index. The other columns of the table are not relevant to the correlation as they do not provide ip address values.
... View more
01-08-2023
08:20 PM
I want to correlate values from the column 'ip' in a .csv lookup table with 'src_ip' and 'dest_ip' field values in 'netfw' index.
... View more
01-08-2023
08:01 PM
There is a lookup table with a row called 'ip' containing multiple ip address values which I would like to correlate with firewall traffic in the 'netfw' index, 'src_ip' and 'dest_ip' fields.
... View more
09-29-2022
07:25 PM
I have the same issue too. Cloud Monitoring Console was recently updated to a new version on 26/09. I have a ticket with Splunk technical support, it might be a bug.
... View more
05-03-2022
05:30 PM
No errors are displayed after running the search, yet I receive no returned results.
... View more
05-03-2022
05:29 PM
Unable to perform the following search provided by Splunk to check forwarder certificate package version:
index=_internal source=*metrics.log group=tcpout_connections
name=splunkcloud*
| stats latest(_time) AS _time latest(name) AS name by host
| rex field=name "(?<output_group>splunkcloud_202[23456789]\d+)\_"
| eval fwd_config=if(isnotnull(output_group),“new”,“legacy”)
| stats count by _time host output_group fwd_config
| reltime
| fields _time reltime host output_group fwd_config
| sort 0 fwd_config
... View more
Labels
- Labels:
-
rex
01-23-2022
04:26 PM
Is there an equivalent search for indexes? Thanks
... View more
01-12-2022
08:06 PM
Hi there, I would like to monitor indexes that have not been active for more than 24hrs+ and display the names of the indexes in a table as well as the last received activity. Thanks
... View more
11-17-2021
07:37 PM
I want to be able to perform a search across a list of internal IPs making http/https GET and POST requests to external sources AFTER or at the SAME TIME a specific external IP is making inbound connection attempts of any kind to them.
... View more
Labels
- Labels:
-
lookup
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
01-08-2023
11:32 PM
|
