cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
crucifier_0
Explorer
Member since: ‎05-17-2022
‎06-29-2022
Community Statistics
Posts 5
Solutions 0
Karma Given 4
Karma Received 0
Member Since ‎05-17-2022
Activity Feed
View All

Help with regex pattern

by in Splunk Search
‎05-20-2022 10:43 AM
‎05-20-2022 10:43 AM
Hey, i want a regex result from 10.66.189.62 -- -- -[17/May/2022:05:59:16--0400]--502- "POST /astra/sliceHTTP/1.1" req_len=1776-req_cont_len=117-req_cont_enc="-"-res_body_len=341 res_len=733 "https://ninepoint.blackrock.com/astra/ ". "Mozilla/5.0- (Macintosh; Intel-Mac-OS-X-10_15_7) -AppleWebKit/537.36-(KHTML,-Like-Gecko) Chrome/10.0.4896.127 Safari/537.36" x_fw_for="-".req_time=278.326-ups_res_time=278.326 ups_con_time=0.011-ups_status=502-pipe=. -VNDRegID=undefined- as; ninepoint Could you please help me with my query? thank you ... View more
Labels

How to average the values of duplicate entries?

by in Splunk Search
‎05-18-2022 06:24 AM
‎05-18-2022 06:24 AM
Hi, Suppose I have these following entries in a table A-  1 A - 2 A - 3 B - 1 B-  2 I want to average the values of the same key. Something like this, A-  3.5 B - 1.5 Help me out on this  ... View more
Labels

Re: Feeding regex results of a query into another ...

by in Splunk Search
‎05-18-2022 12:42 AM
‎05-18-2022 12:42 AM
Thank you ITWhisperer, I was looking for the exact regex.  ... View more

Re: Feeding regex results of a query into another ...

by in Splunk Search
‎05-17-2022 11:19 PM
‎05-17-2022 11:19 PM
My current regex is  rex field=_raw \"\w*\s(?<url>.*?)\s.*\"   And it could start with POST or GET    Thank you  ... View more

How to feed regex results of a query into another ...

by in Splunk Search
‎05-17-2022 11:09 PM
‎05-17-2022 11:09 PM
My current Splunk regex query 10.66.189.62 -- -- -[17/May/2022:05:59:16--0400]--502- "POST /astra/sliceHTTP/1.1" req_len=1776-req_cont_len=117-req_cont_enc="-"-res_body_len=341 res_len=733 "https://ninepoint.blackrock.com/astra/". "Mozilla/5.0- (Macintosh; Intel-Mac-OS-X-10_15_7) -AppleWebKit/537.36-(KHTML,-Like-Gecko) Chrome/10.0.4896.127 Safari/537.36" x_fw_for="-".req_time=278.326-ups_res_time=278.326 ups_con_time=0.011-ups_status=502-pipe=. -VNDRegID=undefined- gives me; POST /astra/sliceHTTP/1.1   I want to apply another query on the result of above query to get  POST/astra/sliceHTTP/1.1     ,i.e /astra Is there a way or a better regex pattern which can provide me the following? ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎06-29-2022 10:46 AM
Karma given to