Dashboards & Visualizations
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to create a dashboard in Splunk similar to an AWStats report?

anasar
New Member
‎03-04-2016 01:27 AM

Hi,

We've indexed all jboss access.log files. We're using AWStats before. Just to make a smooth transition, we need to provide AWStats kind of report first. Can you suggest how to get the exact searches to get unique_visitors, visits, pages, hits and bandwidth, session duration, etc. using Splunk? For unique_visitiors I've used the search below:

index=jboss-access method=POST | stats distinct_count(clientip) as Uniquevisitors
0 Karma
Reply

martin_mueller
SplunkTrust
SplunkTrust
‎03-14-2016 11:24 AM

How to get the exact searches in Splunk depends on how the exact searches in AWStats are built.

For example, you've used dc(clientip) for unique visitors - is that how AWStats computes unique visitors? I'm asking because determining correctly which hit on a page belongs to what person is extremely hard. There are many ways to approximate this, your example is only one of them.

If you need specific help with a certain search you can get help here, just make sure to spell out your requirements for the search instead of posting a screenshot - any algorithm could be behind that, so trying to recreate it like that is futile.
If you need someone to rebuild that entire page for you I'd recommend getting Splunk Professional Services or a local Splunk Partner for a few days on site.

0 Karma
Reply

ppablo
Retired
‎03-04-2016 10:10 AM

Hi @anasar

It would be helpful if you could include a link to an image showing what an AWStats report looks like for people who are not familiar with it.

0 Karma
Reply

anasar
New Member
‎03-11-2016 11:39 PM

A sample screeshot is given @ http://www.nltechno.com/awstats/awstats.pl?config=destailleur.fr

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Observability as Code: From Zero to Dashboard

For the details on what Self-Service Observability and Observability as Code is, we have some awesome content ...

[Puzzles] Solve, Learn, Repeat: Character substitutions with Regular Expressions

This challenge was first posted on Slack #puzzles channelFor BORE at .conf23, we had a puzzle question which ...

Shape the Future of Splunk: Join the Product Research Lab!

Join the Splunk Product Research Lab and connect with us in the Slack channel #product-research-lab to get ...