This is not current Splunk documentation.
Splunk 3.4.2 is the latest version. Only use this page with older Splunk 2.0.x.
« Previous  |   Table of Contents   |   Next »

Splunk User Manual (Splunk v2.0)

Command Line Search Tool

Search Examples

The Splunk Server lets you run searches from a shell on the host running your Splunk Server setup. You can Splunk from your shell prompt or from a shell script.

# splunk search deny inbound hoursago::1 maxresults::5

You should get results that look something like this.

Dec 15 12:42:12 stage-test Jan 01 2004 12:48:07: %PIX-2-106006: Deny inbound UDP from 123.67.53.22/12345 to 10.0.253.252/1433 on intthee
Dec 15 12:42:12 stage-test Jan 01 2004 12:48:06: %PIX-2-106006: Deny inbound UDP from 144.1.10.222/12345 to 89.89.154.72/6161 on inte
Dec 15 12:42:12 stage-test Jan 01 2004 12:48:05: %PIX-2-106006: Deny inbound UDP from 45.67.123.44/12345 to 148.14.67.34/3244 on inte
Dec 15 12:42:12 stage-test Jan 01 2004 12:47:38: %PIX-2-106006: Deny inbound UDP from 45.67.123.44/12345 to 89.89.154.72/6161 on inte
Dec 15 12:42:12 stage-test Jan 01 2004 12:47:37: %PIX-2-106006: Deny inbound UDP from 123.67.53.22/12345 to 148.14.67.34/3244 on inte

The command supports the entire Splunk box search command syntax.

« Previous  |   Table of Contents   |   Next »

Comments

No comments have been submitted.

close

Flash required to play this video.

Click here to download the free Flash Player.

Description:

Permalink: