×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
davidlajda
Engager
Member since: ‎09-07-2017
‎06-05-2020
Community Statistics
Posts 4
Solutions 0
Karma Given 1
Karma Received 0
Member Since ‎09-07-2017
Activity Feed
View All

Re: Save number to a value from .log file

by in Splunk Search
‎09-12-2017 05:54 AM
‎09-12-2017 05:54 AM
would like to youse if else statment. something like this: if ( index = help source=/Info.log sourcetype=info "My name is:" "and I am:" "and I live on:" | rex "My name is: (?[^,]+),and I am: (?\d+) years old and I live on:(?\S+)" ) { | table name age street | eval EmailBody="This was the name:".name." and this was the age:".age." and finally the street".street } else { | eval EmailBody="Nothing found" } ... View more

Re: Save number to a value from .log file

by in Splunk Search
‎09-11-2017 07:45 AM
‎09-11-2017 07:45 AM
Works! 🙂 thanks for your help. Btw Bloomington is pretty place. Played there AirSOft game couple years ago, when I was in the USA. 🙂 ... View more

Re: Save number to a value from .log file

by in Splunk Search
‎09-11-2017 06:17 AM
‎09-11-2017 06:17 AM
Well i try again with another example, bc this didn't work to me. 😞 in my search for example i have: index = help source=/Info.log sourcetype=info "Today is a pretty day. My name is: Daniel, and I am: 50 years old and I live on: CC.1234.55541. this finds me specific example, but in log i can have different name/age/street, so i need to substitute it with something else which reads the value =>save it and then i can save the report and create dashboard which will be scheduled for specific time at everyday and send report if it finds this sentence in the log. If doesnt find then it won't send anything. looking for something like: "Today is a pretty day. My name is: scanf(a,"%s"), and I am: scanf(b,"%s") years old and I live on: scanf(c,"%s")." now i would have 3 values(a,b,c) and would create a sentence: We found him, he is 'b' years old and lives on 'c' address. probably it's very simple, but this is my 2nd week with splunk... ... View more

Save number to a value from .log file

by in Splunk Search
‎09-07-2017 06:24 AM
‎09-07-2017 06:24 AM
Hello all. I'm totally new to splunk. And I'm totally desperate now. I have .log file in which i have to search for specific sentence. For example..... Today is a pretty day. My name is: Daniel, and I am: 50 years old and I live on: CC.1234.55541. These three values as name, age and street I live on will be always different in the .log file. I need to find this whole sentence. Then I need to save the age (2nd value) and the street (3rd value). Then I need to e-mail dashboard with different sentence where I place the 2nd and 3rd value from the sentence from the .log file. I've been looking for 2 days and I can't find answer. Is there something for example %s or something what subs string/integer. The third parameter wil always start with 2 letters. Maybe can i create somehow values where i save the number and then append it to the sentence which will be sent to e-mail in dashboard? Hope you know what I mean. Comparing my skill in splunk is like a small dog which can't swim and is thrown to the swimming pool to learn how to swim without any previous lessons... Thanks for help ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:03 AM
Karma given to
View All