Field Extractions from Proxy Logs
Hi Team, Need your help/suggestion on what is the best way to handle below scenario. I am using field extractor screen from search head GUI to extract fields from below proxy log patterns. For example...
View ArticleAre there any Mulesoft dashboard apps or add-ons?
Is there a jar/tar/zip or something developed to enable or install in the Splunk servers to reuse with Mulesoft and enable some dashboards?
View ArticleHow do I make my search command to summarize network throughput data?
Aplogies, I'm not a Splunk administrator, I'm a capacity tool person that needs to extract some metrics from Splunk. Mostly I'm doing fine, but this one has me stumped. I'm trying to collect network...
View ArticleVisual chart for how much free disk space is available?
when i run the query in splunk search [ host=tableau sourcetype="Perfmon:Free Disk Space" ] I get the below mentioned results 9/7/17 3:57:43.000 PM 09/07/2017 11:57:43.647 -0400 collection="Free Disk...
View ArticleHow to build a search using 4 different ad hoc searches
base-search earliest=-1h@m| Desk cli_attr="MOBILE_IND=N" Mobile cli_attr="MOBILE_IND=Y" Emarketing cli_attr="MOBILE_IND=Y" OR cli_attr="MOBILE_IND=N" PartnerCode=* Non-Emarketing...
View ArticleSplunk Statistics table with totals column
**Below is my CSV Data :** ---------- Company, Model,Year Honda, Civic, 2016 Toyota, Camry, 2017 Honda, Accord, 2016 Honda, Civic SE,2017 Honda, Fit, 2017 Honda, Fit EV, 2017 Toyota, Corolla, 2016...
View ArticleTabular report showing count based on time range
Hi, I need to create report in ![alt text][1] format. Could anyone help me in achieving this. I can have time interval of 2 hours as well if cannot have in the format. [1]:...
View ArticleHow can I sum total memory used by a process?
I need to calculate total memory used by a process. There are multiple processes with same root and suffixes. But data sampling is not consistent. Sometimes it comes in as 2 per minute, sometimes 4....
View ArticleHow can I install a forwarder on a Sun Solaris 5.10?
I did the following - bash-3.2$ uname -a SunOS 5.10 Generic_Virtual sun4v sparc sun4v bash-3.2$ tar -xvzf splunkforwarder-6.4.1-debde650d26e-SunOS-sparc.tar.Z tar: z: unknown function modifier Usage:...
View ArticleHow can I connect MS Excel to Splunk via Splunk ODBC after upgrading Splunk...
After upgrading Splunk to 6.6.x I can no longer connect MS Excel (on a Windows 7 server) to Splunk via the Splunk ODBC driver 2.1.1. When trying to make a connection following the steps below, The...
View ArticleHow to configure Splunk to collect nmon data and shows analysed reports in AIX?
I have installed splunk-6.2.13-278211-AIX-powerpc version and now wanted to configure Splunk in such way that it should collect nmon data and I should be able to see post and current utilization of...
View ArticleCisco Networks App - Access Points Not Showing
I have switches, WLC and APs sending syslog to rsyslog. Splunk is monitoring the folders and ingesting data properly (sourcetype for all 3: cisco:ios). The IOS devices and the WLC are showing up in the...
View ArticleAutomating bundle pushes from shcluster and index cluster
Simple question, has anyone been able to successfully solve this? I can surely think of a bunch of easy ways to accomplish this (i.e. ansible) but what are others experiences? What advice do you have?...
View ArticleHow to choose one field value out of two ?
Hi All, If a field has two values but I want to pick only one. Could you please suggest me with the help of which command I can do that ? just as say Field A= B,C
View ArticleReqular Expression
Hi All, I am a new to Regular Expression topic, Could you please share me a link which help me to understand Regular Expression for splunk ?
View ArticleUsing multiple geospatial lookups
Thanks in advance for any help. I currently am using a geospatial file to show devices inside or outside of a geofence. Here is a small snippet of the search | lookup geo_Example1 latitude longitude |...
View ArticleReqular Expression 101
Hi All, I am a new to Regular Expression topic, Could you please share me a link which help me to understand Regular Expression for splunk ?
View ArticleSend JSON file/txt file using HEC
Hello Trying to send a JSON file/text file through HEC to splunk. Getting stuck while adding `"-d @data.json"` in curl command. I have created a new token, enabled it, sent sample data like Hello...
View ArticleReplace join with stats to merge events based on common field
My datasets are much larger but these represent the crux of my hurdle sourcetype=sale_by fields: sid, user sourcetype=sale_made fields: sid, amount Where: `sale_made.sid = sale_by.sid` I have this...
View ArticleSlack Notficiation Alert: errors behind proxy
Hi, We have already whitelisted slack & web hook URLs in proxy but still getting errors in splunkd and slack alerts are not working. May be something to change in python script for slack.py...
View Article