Getting Data In

How to get the latest timestamp from a log file?

Path Finder

How to get the latest timestamp from a log file?I need the latest logs from different source and their timestamp.

0 Karma
1 Solution

Champion

HI,

You can use this query:

  index=*  | stats latest(_time) by source

View solution in original post

0 Karma

Super Champion

try this:

index=indexname|stats latest(timestamp) by source
0 Karma

Champion

HI,

You can use this query:

  index=*  | stats latest(_time) by source

View solution in original post

0 Karma
State of Splunk Careers

Access the Splunk Careers Report to see real data that shows how Splunk mastery increases your value and job satisfaction.

Find out what your skills are worth!