Home
Join the Community
Getting Started
Welcome
Be a Splunk Champion
SplunkTrust
Super User Program
Tell us what you think
Splunk Love
Community Feedback
Find Answers
Splunk Administration
Getting Data In
Deployment Architecture
Monitoring Splunk
Using Splunk
Splunk Search
Dashboards & Visualizations
Splunk Platform
Splunk Enterprise
Splunk Cloud Platform
Premium Solutions
Splunk Enterprise Security
Splunk Observability Cloud
Splunk ITSI
Splunk SOAR
News & Education
Blog & Announcements
Community Blog
Product News & Announcements
Training & Certification
Training + Certification Discussions
Training & Certification Blog
Learning Path
Events
Events
Tech Talks: Technical Deep Dives
Office Hours: Ask the Experts
User Groups
Apps & Add-ons
All Apps and Add-ons
All Apps and Add-ons
Splunk Development
Splunk Dev
Resources
SplunkBase
Developers
Documentation
Splunk Ideas
Sign In
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search instead for
Did you mean:
All community
Knowledge base
saifdj
Users
Products
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search instead for
Did you mean:
Ask a Question
About saifdj
saifdj
Engager
Member since:
04-30-2020
06-05-2020
Community Statistics
Posts
2
Solutions
0
Karma Given
2
Karma Received
0
Member Since
04-30-2020
View all badges
Activity Feed
Karma
eval Time difference
for lpolo.
06-05-2020
12:46 AM
Karma
Re: eval Time difference
for eelisio2.
06-05-2020
12:46 AM
Posted
rex command
on
Splunk Dev
.
05-04-2020
03:58 AM
Tagged
rex command
on
Splunk Dev
.
05-04-2020
03:58 AM
Tagged
rex command
on
Splunk Dev
.
05-04-2020
03:58 AM
Tagged
rex command
on
Splunk Dev
.
05-04-2020
03:58 AM
Tagged
rex command
on
Splunk Dev
.
05-04-2020
03:58 AM
Posted
Time different between two log records
on
All Apps and Add-ons
.
04-30-2020
05:27 AM
Tagged
Time different between two log records
on
All Apps and Add-ons
.
04-30-2020
05:27 AM
Tagged
Time different between two log records
on
All Apps and Add-ons
.
04-30-2020
05:27 AM
Tagged
Time different between two log records
on
All Apps and Add-ons
.
04-30-2020
05:27 AM
Tagged
Time different between two log records
on
All Apps and Add-ons
.
04-30-2020
05:27 AM
Tagged
Time different between two log records
on
All Apps and Add-ons
.
04-30-2020
05:27 AM
Topics I've Started
Subject
Karma
Author
Latest Post
rex command
Splunk Dev
0
saifdj
05-04-2020
10:20 AM
by
cpetterborg
Time different between two log records
All Apps and Add-ons
0
saifdj
04-30-2020
05:45 AM
by
richgalloway
View All
Topics saifdj has Participated In
Topics saifdj has Participated In
Latest Contributions by saifdj
Re: rex command
by
cpetterborg
in
Splunk Dev
05-04-2020
10:20 AM
05-04-2020
10:20 AM
Slightly more generic (since it looks like a comma is the delimiter): ... | rex "activityId: (?<ACTIVITY_ID_VALUE>[^,]+)"
... View more
Re: Time different between two log records
by
richgalloway
in
All Apps and Add-ons
04-30-2020
05:45 AM
04-30-2020
05:45 AM
You should be able to do it using stats . ... | eval epoch = strptime(appTimestamp, "%b %d, %Y, %H:%M:%S.%3N %z") | stats earliest(epoch) as start, latest(epoch) as end by tag | eval diff = end - start | ...
... View more
Contact Me
Online Status
Offline
Date Last Visited
06-05-2020
02:03 AM
Karma given to
User
Karma Count
lpolo
1
eelisio2
1
View All