Thread Info | |||||
---|---|---|---|---|---|
Is there a way to show the status of search jobs while the search is in progress. I have a dashboard with multiple se...
by
Sriram
Communicator
in
Splunk Search
03-31-2012
|
0
|
8
| |||
First time posting! --using splunk 4.2.4--
I noticed similar questions on here that were either unanswered or didn...
by
sberg
Explorer
in
Splunk Search
04-09-2012
|
0
|
5
| |||
I'm trying to add search servers to my search head. I'm using the following command:
./splunk add search-server -h...
by
kevinsikora
Explorer
in
Splunk Search
04-10-2012
|
1
|
3
| |||
Hey everyone. Is anyone using Nagios to monitor their splunk instance? I've seen that there was a check_splunk plugin...
by
msarro
Builder
in
Splunk Search
09-09-2011
|
1
|
2
| |||
I have a lookup on sourcetype=vipservices csv file has values like so
jurhash, jurhasfriendlyname somehashvalue, s...
by
sonicZ
Contributor
in
Splunk Search
04-09-2012
|
0
|
3
| |||
I'm using a transaction to group events within 30 minutes of one another. What I want to do after that is "undo" one ...
by
acdevlin
Communicator
in
Splunk Search
08-05-2011
|
2
|
6
| |||
I'm using
transaction ... | search duration>x
to eliminate some noise, but then I want to break the events bac...
by
vbumgarner
Contributor
in
Splunk Search
03-22-2011
|
6
|
3
| |||
It is best to demonstrate with an example:
Example of data:
And expected tesult table:
by
Print
Explorer
in
Splunk Search
04-10-2012
|
1
|
10
| |||
I am extracting a date/time stamp out of some XML; however, I need to strip out the time from the string.
i.e. - 3...
by
efelder0
Communicator
in
Splunk Search
04-05-2012
|
0
|
5
| |||
All of the Event's in Splunk have MAL,WM,W32,Troj,CXmal,JS,or Vir in their name. Is there a way to separate all of th...
by
antifreke
Path Finder
in
Splunk Search
04-10-2012
|
0
|
3
| |||
I am trying to reformat a date field in Splunk. I have a field called "last_updated_date" and its value is 2012-04-03...
by
efelder0
Communicator
in
Splunk Search
04-09-2012
|
2
|
5
| |||
All fields from a lookup.csv file appear as available search fields except the date field.
Here is how I defined t...
by
boris
Path Finder
in
Splunk Search
04-06-2012
|
0
|
3
| |||
I have a problem creating new search time field extractions using the Splunk's REST API and the Java SDK.
This is ...
by
misteryuku
Communicator
in
Splunk Search
04-08-2012
|
0
|
1
| |||
I have created a new field extraction on props.conf via Splunk REST API
I have a raw message that looks like this....
by
misteryuku
Communicator
in
Splunk Search
04-08-2012
|
0
|
1
| |||
I have a search using transaction and the startswith/endswith but I don't know how to call the Task_time field in the...
by
tb582
Explorer
in
Splunk Search
04-06-2012
|
0
|
13
| |||
I have a timechart that shows me the daily throughput for a log source per indexer. I'm trying to find a way to add t...
by
michaeljlancast
Explorer
in
Splunk Search
04-06-2012
|
1
|
3
| |||
I'm looking to find everything that has the string "Task Failed". I want splunk to get the task_id and then use all t...
by
tb582
Explorer
in
Splunk Search
04-07-2012
|
0
|
4
| |||
new to splunk so go easy on me
I can currently run two different searches and get the the results I'm looking for ...
by
tb5821
Communicator
in
Splunk Search
04-06-2012
|
0
|
5
| |||
I am looking for a search that will list the concurrent searches(jobs) running that were running on the machine for a...
by
hmahendrakumar
Path Finder
in
Splunk Search
02-02-2011
|
6
|
4
| |||
Hi
I have defined a field for different types of events, the field is recognized in all the events I want to see i...
by
chris
Motivator
in
Splunk Search
05-12-2010
|
1
|
3
| |||
Hi,
is it possible to merge two or more event results in one? The events are from the same field.
Reason : I ha...
by
nebel
Communicator
in
Splunk Search
04-05-2012
|
0
|
2
| |||
Trying to compare the results of a lookup table to a field I'm creating by using mvindex and I can get it to join and...
by
mjones414
Contributor
in
Splunk Search
04-05-2012
|
1
|
1
| |||
My ultimate goal is to create a regex expression that can be used use to extract fields from any record made up comma...
by
mikefoti
Communicator
in
Splunk Search
04-02-2012
|
0
|
3
| |||
Trying to show the top 10 busiest guest VM's in mu environment. Each guest VM is reporting its network status in the ...
by
talbot7
Path Finder
in
Splunk Search
04-05-2012
|
0
|
1
| |||
I know how to exclude certain days from your search results: http://splunk-base.splunk.com/answers/1367/how-do-you-ex...
by
Glenn
Builder
in
Splunk Search
04-05-2012
|
0
|
5
|