The venerable old-skool Splunk forums are now closed. Feel free to search for old content here, but new posts are no longer supported.
Instead, please visit the thriving community at answers.splunk.com to ask and answer questions about your Splunk deployment and how to get the most out of it.
Forums: Posted by tsingara
| Topic | Author | Replies | Latest Post |
|---|---|---|---|
|
Search over multiple lines using Rex
In: SplunkSearchAndAlert
(Not tagged)
We are writing error messages into our log files using in the following format
04-06-2010 12:12:12:123 ...
|
–
|
26 months ago... | |
|
Data not being forwarded in real time
In: SplunkAdministration
(Not tagged)
I looked at the splunkd log files in \var\log\splunk of both the forwarder and Indexer.
The forwarder ...
I have one box running Windows OS setup as my Server/Indexer and there is another box running on Windows ... |
4
|
26 months ago... | |
|
Form a report based on Response time
In: SplunkReporting
(Not tagged)
Hope this helps
sourcetype=ApplicationLog | rex "Service Response Time:(?P<SRTimes>.*) ms'" | fields ...
Thanks a lot. Works perfectly. Hi All, We have a log file which captures the response time of a service in ms, and I'm having difficulty ... |
5
|
26 months ago... |