cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
gauravu_14
Explorer
Member since: ‎01-03-2023
‎10-03-2023
Community Statistics
Posts 7
Solutions 0
Karma Given 3
Karma Received 0
Member Since ‎01-03-2023
Activity Feed
View All

Re: How to compare event data with lookup data to ...

by in Splunk Search
‎10-02-2023 03:18 AM
‎10-02-2023 03:18 AM
I would like to know which values are missing in the events compared to the lookup and output those field-values ... View more

Re: Why is Splunk tag for key value pair not appea...

by in Splunk Enterprise Security
‎09-28-2023 10:16 AM
‎09-28-2023 10:16 AM
This was a bug from in current ES version. They would be fixing it in the next update ... View more

How to compare event data with lookup data to find...

by in Splunk Search
‎09-28-2023 10:01 AM
‎09-28-2023 10:01 AM
I need to compare the values of 2 fields from the Splunk data with the field-values from the lookup and find the missing values from the Splunk data and output those missing field value pairs For ex: index=test  sourcetype=splunk_test_data fields: field1, field2 lookup: test_data.csv Fields: field1, field2 The output should show missing values from the Splunk data and output those missing values Any help would be appreciated  Thanks ... View more
Labels

Why is Splunk tag for key value pair not appearing...

by in Splunk Enterprise Security
‎06-06-2023 06:32 AM
‎06-06-2023 06:32 AM
I have created a tag for a key-value pair (dvc=IP_Address) and shared it will all the apps. Which doing a search for the logs related to the above device, I can see the tag appearing for that key value pair (dvc=IP_Address(Tag_Name)). However, this tag is not working for the notable events. It does not appear for the notables under Incident Review of Splunk ES. These tags were working prior to the new ES update. Looking for the solution regarding the same ... View more

Re: Error in 'eval' command: unexpected character...

by in Splunk Search
‎01-30-2023 10:31 AM
‎01-30-2023 10:31 AM
Thanks, the SPL did work this time. However, there was no result for the mentioned string and yet I am seeing that error ... View more

Re: Error in 'eval' command: unexpected character...

by in Splunk Search
‎01-30-2023 09:30 AM
‎01-30-2023 09:30 AM
After running the SPL query, I am getting the below error: "Error in 'where' command: Regex: unmatched closing parenthesis" ... View more

Re: Data model 'Cloud_Infrastructure' was not foun...

by in Knowledge Management
‎01-03-2023 02:54 AM
‎01-03-2023 02:54 AM
I am facing the the same issue, unable to find the solution yet ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎10-03-2023 10:32 AM
Karma given to
View All