I use Splunk 6 (free) for some basic keyword searching. Generally I just add a specific IP address and a keyword, and I get a hit if it has been indexed. My IP ranges are usually Class C, and I just used something like 10.10.10.* when wanting to search for that particular keyword in the subnet.
Recently I needed to do searches found in much larger IP ranges. For example 184.108.40.206 to 220.127.116.11.
How would I define that range with Splunk? I have looked at some articles, and there they used 18.104.22.168/20 format, but for the life of me I am unable to get it to work in my Splunk searches.
So, if my keyword was "error", and my range was 22.214.171.124 to 126.96.36.199, how would I add that to a Splunk search?