Product News & Announcements - Splunk Community
All the latest news and announcements about Splunk products. Subscribe and never miss an update!
Learn Splunk
2025年2月18日 · Learn SplunkLearn Splunk
Home - Splunk Community
Getting Started Learn more about the Splunk Community and how we can help Community Blog Community happenings, product announcements, and Splunk news Learning Paths Discover …
Can I use the "IN" command like this? - Splunk Community
2019年7月10日 · index=myIndex FieldA="A" AND LogonType IN (4,5,8,9,10,11,12) The documentation says it is used with "eval" or "where" and returns only the value "true". But it …
What's New in Splunk Enterprise 9.4: Features to P ... - Splunk …
2024年12月16日 · Hey Splunky People! We are excited to share the latest updates in Splunk Enterprise 9.4. In this release we have many awaited features and enhancements for both …
Solved: How to use "where" and "not in" and "like" in one
2017年9月13日 · How to use "where" and "not in" and "like" in one query?
How to properly use OR and WHERE in splunk
2017年10月11日 · Hi, I'm new to splunk, my background is mainly in java and sql. I was just wondering, what does the operator "OR" mean in splunk, does it have a different meaning? for …
How to properly use AND / OR in search? - Splunk Community
2015年6月2日 · It's always redundant in search, so although Splunk doesn't give you an error, you can always remove it when you see it in the initial search clause, or in a subsequent search …
How to only display unique values from a field? - Splunk Community
2017年11月16日 · I am searching the my logs for key IDs that can either be from group 'AA' or group 'BB'. I find them by using rex and then display them in a table. (AA_12345 for example). …
How do I concatenate two fields into a string? - Splunk Community
2023年2月1日 · I have two fields, application and servletName. I'd like to have them as column names in a chart. I'm currently trying to use eval to make a new variable named fullName, and …