Thread Info | |||||
---|---|---|---|---|---|
In 4.3 Getting "error code 1" messages when trying to do an external lookup with a Python Script. Script runs ok stan...
by
davecroto
Splunk Employee
in
Splunk Search
02-02-2012
|
0
|
2
| |||
Hi
I have a question about a rex with multiple outputs. I use rex to get two fields out of the source-path to fill...
by
fritzsplunk
Engager
in
Splunk Search
03-05-2012
|
0
|
1
| |||
After upgrading to 4.3 our custom forms with a chart component started to show up the following error:
Search did...
by
chusi
New Member
in
Splunk Search
01-12-2012
|
0
|
8
| |||
I'm new to splunk, here's my issue. I have a log file which contains the extracted fields below: task_id task_duratio...
by
tb582
Explorer
in
Splunk Search
03-06-2012
|
0
|
6
| |||
A while back I posted this question: http://splunk-base.splunk.com/answers/29015/dotted-line-chart
The answer gave...
by
Dark_Ichigo
Builder
in
Splunk Search
03-05-2012
|
0
|
4
| |||
So when Splunk admon changed from 4.1.5 to 4.1.6 they also changed how it exacted a timestamp field from AD
4.1.5 ...
by
cramasta
Builder
in
Splunk Search
03-06-2012
|
0
|
2
| |||
I used windows version Splunk 4.3. I was trying to run the following line command in window shell:
splunk test sou...
by
myli12
Path Finder
in
Splunk Search
02-08-2012
|
3
|
1
| |||
Hi,
My log snippet is as shown below:
productid=12 email=abc@gg.com
productid=13 email=pqr@aa.com
productid=1...
by
freephoneid
Path Finder
in
Splunk Search
03-06-2012
|
0
|
1
| |||
Hi, I want only return the latest event
The following seems to work so far. It is correct? No entirely sure what t...
by
aleem
SplunkTrust
in
Splunk Search
03-06-2012
|
0
|
1
| |||
Hi Base, I just run into a problem and I can´t solve it by my own. So, maybe someone here can bring me back on track:...
by
ndcl
Path Finder
in
Splunk Search
03-05-2012
|
0
|
2
| |||
Hi, I am importing custom CSV files. I have a field value named "color". I just want to be able to get Splunk to retu...
by
aleem
SplunkTrust
in
Splunk Search
03-06-2012
|
0
|
2
| |||
I am grouping the data by using transaction (using maxspan option). After that the requirement (final result) is to ...
by
ramab
Engager
in
Splunk Search
03-06-2012
|
0
|
1
| |||
My dilemma:
We have a log file that dumps out info from an array.
Four fields:
Count FieldA FieldB FieldC
...
by
kubowler99
New Member
in
Splunk Search
03-05-2012
|
0
|
1
| |||
Hi,
My log snippet is as shown below:
productid=12 email=abc@gg.com productid=13 email=pqr@aa.com productid=14 ...
by
freephoneid
Path Finder
in
Splunk Search
03-05-2012
|
0
|
1
| |||
I created a simple report showing the top 100 IPs and their counts for a certain event. I clicked save and share resu...
by
LanMan6501
New Member
in
Splunk Search
02-29-2012
|
0
|
3
| |||
Hi,
I am having some inconsistent search results and I'm not terribly sure why.
search #1:
earliest=-7d late...
by
Kate_Lawrence-G
Contributor
in
Splunk Search
02-28-2012
|
1
|
3
| |||
Greetings everyone. We are using a search against CDR data to calculate the 60 minute period in a day which has the h...
by
msarro
Builder
in
Splunk Search
03-05-2012
|
1
|
1
| |||
Hi,
I have a lookup search that works fine but I would like to add information from the lookup table that the sour...
by
Mannyi31
Explorer
in
Splunk Search
03-02-2012
|
1
|
3
| |||
I have some data in splunk with zip code. I would like to be able to map this using the google maps app. I have added...
by
jbertoli
Engager
in
Splunk Search
12-01-2011
|
1
|
1
| |||
I have a search command that looks like:
| mysqlquery spec="users" query="select * from users" | collect index="ne...
by
imosquera
Explorer
in
Splunk Search
03-01-2012
|
1
|
1
| |||
Is it possible for splunk to be able to index a file with this kind of formatting:
host=hostname
sourcetype=source...
by
jgauthier
Contributor
in
Splunk Search
03-02-2012
|
0
|
1
| |||
i have an event that looks like this
03/01/2012 03:05:43 PM LogName=Security SourceName=Security EventCode=562 Eve...
by
rdevine
Path Finder
in
Splunk Search
03-01-2012
|
0
|
4
| |||
Which of the following is the preferred syntax for setting values in configuration files? disabled = [true|false] or ...
by
steveirogers
Communicator
in
Splunk Search
03-01-2012
|
0
|
2
| |||
I need to run two sub searches. Each of these sub-searches will return a set of fields, one of them is called transac...
by
simonattardGO
Path Finder
in
Splunk Search
03-02-2012
|
0
|
1
| |||
Hi all,
We have a system which always logs two lines, Eg:
1) Operation | Status | Time 2) Operation | Type
I...
by
simonattardGO
Path Finder
in
Splunk Search
03-02-2012
|
0
|
1
|