Thread Info | |||||
---|---|---|---|---|---|
![alt text][1]I have log files with errors and warnings so my requirement is first events show only errors or warning...
by
frankharry
New Member
in
Splunk Search
06-09-2014
|
0
|
1
| |||
Hi,
How can I retrieve nth word in a string using rex or other alternatives?
For example: "ABC BBC XYZ QAS" "PO...
by
rupesh30n
Explorer
in
Splunk Search
06-06-2014
|
0
|
4
| |||
Hi,
I just added a db lookup (via db connect), and when I try to use it via a search, I get a "lookup table does n...
by
a212830
Champion
in
Splunk Search
02-20-2013
|
2
|
1
| |||
The result from this search: index=_internal | eval something=case(kb!="0", "1") | stats sum(something) as sumST | st...
by
kingsizebk
Path Finder
in
Splunk Search
06-09-2014
|
0
|
6
| |||
I am creating a dashboard for failed login, however, in the table created, there will be rows with all "" as values- ...
by
chungmp
New Member
in
Splunk Search
06-09-2014
|
0
|
1
| |||
Hi all,
I have created custom search command. I need to add a custom search command to the list that search help p...
by
rsathish47
Contributor
in
Splunk Search
06-05-2014
|
0
|
3
| |||
As the title says, after cleaning the event data and reindexing, the splunk search doesn't return events prior to the...
by
wtian4
Engager
in
Splunk Search
06-09-2014
|
0
|
1
| |||
時間の計算を行い、各端末がどれぐらいの時間使用しているか調査したいと考えています。
このような例のログになります。
時間 , 端末名 , ステータス
2014/6/5 12:00:00 , PC01 , ログイン
...
by
pisc
Explorer
in
Splunk Search
06-06-2014
|
0
|
2
| |||
It is a very simple search for a string. (Account lock outs to be precise) and as worked in the past. But just recent...
by
neiljpeterson
Communicator
in
Splunk Search
06-06-2014
|
0
|
1
| |||
Hi we have some uri's as shown below which have 2 words (/verify/abrasives) before /ecatalog and 3 words and 4 words....
by
xvxt006
Contributor
in
Splunk Search
06-06-2014
|
0
|
3
| |||
I am trying to find a search command that will get me a list of my top 20 client ip addresses (c_ip) along with each ...
by
soundchaos
Path Finder
in
Splunk Search
06-05-2014
|
0
|
3
| |||
I am getting this error on some data I am trying to push into a Teradata database:
command="dboutput", Unexpected ...
by
ShaneNewman
Motivator
in
Splunk Search
04-04-2014
|
1
|
16
| |||
We have some apache logs that I've added the %D (response time in microseconds) log config to at the very end. The sp...
by
DFresh4130
Path Finder
in
Splunk Search
06-05-2014
|
0
|
3
| |||
I have a splunk query like this
index=main_branch* | table email_id file_size_in_bytes
I want to count for sim...
by
sanchitlohia
Explorer
in
Splunk Search
06-06-2014
|
0
|
6
| |||
Is there a way to set a max size on the entire tsidxstats or even a single set of tsidxstats?
I have the Splunk fo...
by
jtrucks
Splunk Employee
in
Splunk Search
12-09-2013
|
3
|
2
| |||
Hi,
I've got some fieldvalues like this:
field=aaaaaaaabbbbccccddddeeeeeeeeeeee
I would like to add a "-" a...
by
HeinzWaescher
Motivator
in
Splunk Search
06-06-2014
|
0
|
2
| |||
I've set up a database lookup, but it's not returning any results; it should be returning 5 events. Here are the scen...
by
redc
Builder
in
Splunk Search
06-04-2014
|
0
|
2
| |||
A user has asked me if they can take a chart they just generated in Splunk and then send it to other users who don't ...
by
mfrost8
Builder
in
Splunk Search
04-19-2012
|
2
|
8
| |||
Wondering if it's possible to embed a macro into another macro.
by
Dimitri_McKay
Splunk Employee
in
Splunk Search
06-05-2014
|
0
|
2
| |||
New Splunk user. I am creating web dashboards and I want to calculate the percentage of successful status codes. The ...
by
Bliide
Path Finder
in
Splunk Search
06-05-2014
|
0
|
2
| |||
I have a created a table using timechart with the max #. It generates a row of maximum of sourcetype. How would I rou...
by
mmouse88
Path Finder
in
Splunk Search
06-03-2014
|
0
|
16
| |||
Is there a search that I can run at the indexer that will tell me what versions my forwarders are on?
by
the_wolverine
Champion
in
Splunk Search
02-04-2010
|
4
|
4
| |||
I have a single numeric field that I want to timechart in ranges...i.e. rangemap the field into custom buckets, then ...
by
jheney
New Member
in
Splunk Search
06-04-2014
|
0
|
1
| |||
I'm attempting to create my first database lookup. I followed this documentation, choosing to specify the fields dire...
by
redc
Builder
in
Splunk Search
03-25-2014
|
0
|
2
| |||
Using Splunk v 5.04
I have a lookup table containing devicename,interfacename,speed . Each device name can have mu...
by
pitshot
Explorer
in
Splunk Search
06-04-2014
|
0
|
3
|