Thread Info | |||||
---|---|---|---|---|---|
I am working on creating queries to pull a specific number of results from a certain index in the resultset.
An ex...
by
htkhtk
Path Finder
in
Splunk Search
12-16-2010
|
0
|
4
| |||
I am curious if parametrized queries are possible within within splunk dashboards or searches:
ex. query: foo=bar ...
by
gregbujak
Path Finder
in
Splunk Search
12-16-2010
|
1
|
2
| |||
I have all types of Java Exceptions within my logs, that have no real form to them, except that they all start with "...
by
seanlon11
Path Finder
in
Splunk Search
12-08-2010
|
1
|
4
| |||
I have data for users running in two modes: Online, and Cached.
I want to get the average number of connections fo...
by
jamesklassen
Path Finder
in
Splunk Search
12-14-2010
|
0
|
3
| |||
Trying to find out what is most efficient in this scenario resource/time wise.
We want to do a search across the l...
by
skippylou
Communicator
in
Splunk Search
12-15-2010
|
0
|
1
| |||
guys
I want to capture the windows event logs running on my windows servers from a linux server running linux.
...
by
mritorto
New Member
in
Splunk Search
12-13-2010
|
0
|
2
| |||
I'm trying to do some data massaging on a field "volume" that has values like "91456789", "83234512", "30124231" to s...
by
mikebrittain
Explorer
in
Splunk Search
12-13-2010
|
1
|
2
| |||
I'm double posting, original issue posted here: http://www.splunk.com/support/forum:SplunkGeneral/4378
When I use ...
by
dottom
Path Finder
in
Splunk Search
06-12-2010
|
2
|
23
| |||
My data set is web server access logs that include two custom values we insert. The values are lists of keys and list...
by
mikebrittain
Explorer
in
Splunk Search
10-27-2010
|
0
|
2
| |||
How do I setup a redirect so that if the user clicks the App icon in the launcher, they get redirected to the setup s...
by
vbumgarn
Path Finder
in
Splunk Search
12-13-2010
|
1
|
2
| |||
Hi all i need to do a search like this:
sourcetype="webseal_access" OR sourcetype="wmi:wineventlog:security" | ren...
by
pinzer
Path Finder
in
Splunk Search
10-18-2010
|
0
|
2
| |||
i would like to send an alert when newwork interface is down more than 3 min. That is to say i wanna group the field ...
by
hjwang
Contributor
in
Splunk Search
12-13-2010
|
0
|
1
| |||
I have an event with a field like this: ids="ID-120-1, ID-141-5, ID-92-5, N/A"
I'd like to extract the field and o...
by
mw
Splunk Employee
in
Splunk Search
12-12-2010
|
0
|
3
| |||
I am indexing W3C Extended IIS logs and have found that Splunk is extracting column headers from the logs, but due to...
by
splun88
Engager
in
Splunk Search
12-10-2010
|
1
|
1
| |||
How do I get a list of scheduled searches associated with user info.
by
sanju005ind
Communicator
in
Splunk Search
12-08-2010
|
3
|
4
| |||
I have a CSV table that lists the following fields:
date, time, location, received, authorized
It looks like this...
by
kmattern
Builder
in
Splunk Search
12-10-2010
|
0
|
1
| |||
I would like to use a different field than _time as my time base for timechart.
I build a stats table, and in it I...
by
fk319
Builder
in
Splunk Search
12-09-2010
|
1
|
3
| |||
I started running the fill_summary_index.py script and my session was interrupted. The summary backfill process never...
by
the_wolverine
Champion
in
Splunk Search
12-10-2010
|
1
|
3
| |||
I am trying to create a lookup table from evenst similar to the following:
results|192.168.2|192.168.2.183|microso...
by
jambajuice
Communicator
in
Splunk Search
12-10-2010
|
0
|
2
| |||
How to plot running sums? Eg given events with fields "time host errors", I'd like to do
| timechart accum(errors)...
by
jrstear
Path Finder
in
Splunk Search
06-04-2010
|
0
|
2
| |||
The mac address format for all of my logs is xx:xx:xx:xx:xx:xx
AUTHORIZATION-SUCCESS: user: airport; mac: e8:06:88...
by
mayler
Path Finder
in
Splunk Search
12-09-2010
|
1
|
2
| |||
I was working with a search similar to:
my_nifty_search_terms | stats distinct_count(field) by date_hour
and n...
by
dwaddle
SplunkTrust
in
Splunk Search
12-09-2010
|
1
|
1
| |||
I'm trying to rex out a chunk of events, then remove that field from the events prior to piping to the cluster comman...
by
skippylou
Communicator
in
Splunk Search
12-08-2010
|
2
|
2
| |||
Trying to emulate example given here, but totals always come up zero. Basic search returns over 1,000 events for a 4 ...
by
rgcox1
Communicator
in
Splunk Search
12-07-2010
|
0
|
2
| |||
I have file which has a set of all users and roles with the Splunk account.The file name is usermap.csv
I am using...
by
sanju005ind
Communicator
in
Splunk Search
12-06-2010
|
0
|
1
|