How to Specify time modifiers in Splunk search?

When searching or saving a search, you can specify absolute and relative time ranges using the following time modifiers:

earliest=time_modifier
latest=time_modifier

Table of Contents

Examples of relative time modifiers

Examples of chained relative time offsets

Splunk Advance Tutorial for Beginners with Demo 2020 — By DevOpsSchool

Splunk Advance Tutorial for Beginners with Demo (2020) — By DevOpsSchool

Splunk Advance Tutorial for Beginners with Demo [2020] — By DevOpsSchool

SPLUNK Essential Tutorial By Shahrukh in 2020

Rajesh Kumar

I’m a DevOps/SRE/DevSecOps/Cloud Expert passionate about sharing knowledge and experiences. I am working at Cotocus. I blog tech insights at DevOps School, travel stories at Holiday Landmark, stock market tips at Stocks Mantra, health and fitness guidance at My Medic Plus, product reviews at I reviewed , and SEO strategies at Wizbrand.

Please find my social handles as below;

Rajesh Kumar Personal Website
Rajesh Kumar at YOUTUBE
Rajesh Kumar at INSTAGRAM
Rajesh Kumar at X
Rajesh Kumar at FACEBOOK
Rajesh Kumar at LINKEDIN
Rajesh Kumar at PINTEREST
Rajesh Kumar at QUORA
Rajesh Kumar at WIZBRAND

Upgrade & Secure Your Future with DevOps, SRE, DevSecOps, MLOps!

How to Specify time modifiers in Splunk search?

Examples of relative time modifiers

Examples of chained relative time offsets

Need Assistance!!!

Feel Free To Contact Us

+1 (469) 756-6329

(US Call-WhatsApp)

+91 7004 215 841

(India Call-WhatsApp)

Email us

Contact@DevOpsSchool.com