Dashboards & Visualizations
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Maps, geostats and geom commands- What is wrong with my search?

hmohta
Path Finder
‎09-22-2022 11:58 PM

hello everyone

Now I have been getting cluster Maps and Choropleth Maps generated , but a few issues with them.

q1.when I add the same command from search app to the panel in the dash I loose all the state/regions names too!! works with the zoom function, is that ok?


2.  query: why do I have multiple tiles of the same regions running through how can I just create the view where I can see regions only where events have occurred? Screenshot attachedCloropeth Map_2.png

I know the legend doesn't match the map as values show 0, but they change and seem to be ok after 10/15 mins, I dont know why!!

I am trying to search for failed/successful applications logins by region/city/or country.

my query:

 

index=a sourcetype=ab

| iplocation ip
| search status=failure AND connectionname=" ABwebsite"
| stats count by Country| geom geo_countries allFeatures=True featureIdField=Country

 

if I don't add ip, no values populate on the map, there's just color.

 

Thankyou for looking into the query.

 

Labels (2)
Labels
Tags (1)
0 Karma
Reply
Get Updates on the Splunk Community!

Earn a $35 Gift Card for Answering our Splunk Admins & App Developer Survey

Survey for Splunk Admins and App Developers is open now! | Earn a $35 gift card!      Hello there,  Splunk ...

Continuing Innovation & New Integrations Unlock Full Stack Observability For Your ...

You’ve probably heard the latest about AppDynamics joining the Splunk Observability portfolio, deepening our ...

Monitoring Amazon Elastic Kubernetes Service (EKS)

As we’ve seen, integrating Kubernetes environments with Splunk Observability Cloud is a quick and easy way to ...