When you add data to the Splunk platform the data is indexed. As part of the index process, information is extracted from your data and formatted as name and value pairs, calledfields. When you run a search, the fields are identified and listed in the Fields sidebar next to your search ...
I've tried to pull out different columns, taken out spaces in the header info. Cant seemto get it to work. WHen I look at the DOC page in Splunk.com for lookups.. It seems identical. Splunk really doesnt mention what its not finding. lunnumber is there.. Tags: lookup 0...
Splunk software runs the Python script for the custom alert action specified in your app's alert_actions.conf file. This Python script takes in information from the saved search and alert action configurations. The Python script completes the custom alerting functionality. ...