Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- About splunk_enjoyer
splunk_enjoyer
Explorer
Member since:
09-02-2022
06-28-2024
Community Statistics
| Posts | 13 |
| Solutions | 0 |
| Karma Given | 4 |
| Karma Received | 0 |
| Member Since | 09-02-2022 |
Activity Feed
- Posted Re: Splunk + Kafka Connector error: LZ4 compression not implemented on Splunk Enterprise. 10-12-2023 10:01 PM
- Posted Splunk + Kafka Connector error: LZ4 compression not implemented on Splunk Enterprise. 10-10-2023 08:56 PM
- Tagged Splunk + Kafka Connector error: LZ4 compression not implemented on Splunk Enterprise. 10-10-2023 08:56 PM
- Posted Re: Best way to use git for source version control with our Splunk infrastructure? on Getting Data In. 08-28-2023 10:12 PM
- Karma Re: Problem with Indexer and Search Head on one server for richgalloway. 03-01-2023 09:26 PM
- Posted Fix Error: IndexScopedSearch? on Splunk Search. 03-01-2023 09:25 PM
- Tagged Fix Error: IndexScopedSearch? on Splunk Search. 03-01-2023 09:25 PM
- Tagged Fix Error: IndexScopedSearch? on Splunk Search. 03-01-2023 09:25 PM
- Posted Problem with Indexer and Search Head on one server? on Splunk Enterprise. 02-28-2023 09:19 PM
- Posted How to make a table from search history, where time presets were queried by all_time or long diaposone? on Splunk Search. 12-12-2022 12:24 AM
- Tagged How to make a table from search history, where time presets were queried by all_time or long diaposone? on Splunk Search. 12-12-2022 12:24 AM
- Posted Re: Splunk convert time on Splunk Search. 12-11-2022 10:54 PM
- Karma Re: Splunk convert time for inventsekar. 12-11-2022 10:53 PM
- Posted How to convert time format? on Splunk Search. 12-08-2022 10:10 PM
- Tagged How to convert time format? on Splunk Search. 12-08-2022 10:10 PM
- Posted How to create search for date field? on Splunk Search. 11-25-2022 02:33 AM
- Tagged How to create search for date field? on Splunk Search. 11-25-2022 02:33 AM
- Tagged How to create search for date field? on Splunk Search. 11-25-2022 02:33 AM
- Tagged How to create search for date field? on Splunk Search. 11-25-2022 02:33 AM
- Posted Re: How to find changing serial numbers on Splunk Search. 09-02-2022 03:20 AM
Topics I've Started
| Subject | Karma | Author | Latest Post |
|---|---|---|---|
| 0 | |||
| 0 | |||
| 0 | |||
| 0 | |||
| 0 | |||
| 0 | |||
| 0 |
10-12-2023
10:01 PM
@ITWhispererhello mister, please help or can you tag some guys, who can help us please. thank you!
... View more
10-10-2023
08:56 PM
Hello Splunk lovers! I stacked when i was realize kafka connect on Splunk to KafkaBroker with error "LZ4 compression not implemented". Maybe someone has already had and solved this problem. So, how can I solve this problem, please help ?
... View more
Labels
08-28-2023
10:12 PM
Hello! Can you write a statue or instruction with examples about this and help us integrate a Splunk with Git? Begining from install Git, and finish to control scripts can easily be scripts to match scheduled or production rules with dedicated shell menus and so on. Thank you!
... View more
03-01-2023
09:25 PM
Hello Splunk enjoyers! I loaded some data(10 000 000), with fields: updated_time, info, user and discription, to my new index "data_tmp". So when i search, i got a problem Error in 'IndexScopedSearch': The search failed. More than 1000000 events found at time 1677582000.
My search: So i tried to extract by updated_time like: index = data_tmp eval _time = strftime(updated,"%Y-%m-%d %H:%M:%S.%3N") | convert ctime(_time) | fieldformat _time = strftime(updated,"%Y-%m-%d %H:%M:%S.%3N") but nothing works. Can somebody help me with that? thank you!
... View more
- Tags:
- search commands
- time
02-28-2023
09:19 PM
Hello Splunk lovers! I have problem on Splunk Cluster. I had 3 SH and 3 Indexers.
On indexer-1 installed deployer, indexer managament and cluster master.
On cluster master i see indexer-1 search head and indexer too. B but its should not be search head, should be indexer only So, wtf and how can i set him only indexer? thanks you for help!
... View more
Labels
- Labels:
-
administration
12-12-2022
12:24 AM
Hello, Splunk lovers! I have some questions
What i want:
1. i want to make a table from search history, where time presets were queried by all_time or long diaposone
2. i want find other searches, what have command "outputlookup"
please, help thank you!
... View more
- Tags:
- history search
12-11-2022
10:54 PM
its works! thanks man! sorry, i had some problems, take your karma. thanks a lot!
... View more
12-08-2022
10:10 PM
Hello Splunk Lovers! i have date format 202211131614220000 and i want convert this format to readble for Splunk
i should use strptime and strftime, but i have some problems. Please, give me prompt
... View more
- Tags:
- time
11-25-2022
02:33 AM
09-02-2022
03:20 AM
@ITWhisperer thanks! its work! and how can i result serial number and serial_number where serial_number >1? not count
... View more
09-02-2022
03:15 AM
@ITWhisperer its works! so how can i result events where serial number had changed, not count
... View more
09-02-2022
03:06 AM
for example: | table name serial_number result: name | serial_number cisco1 | ABC123456 cisco1 | cdf95959595
... View more
09-02-2022
03:03 AM
Hello Splunk Enjoyers! I have problem
Information about routers arrives every minute, so
What I have: name_of_router and serial_number of client on index = routers
What i want: i want to make alert, if serial_number has changed.
How should i do this?
@splunk
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
06-28-2024
12:55 AM
|
