Solved: Re: Eval Question for Table

jhayIV · ‎03-15-2016

Using the table below I have the following query table Server_Name,Server_TotalPhysicalMemory,Server_Cores,Server_NumberofProcessors,Server_Domain,Server_IsVirtual,Server_LastScanDate,Server_SerialNumber,Server_Site,Associated_AppliationProductName,Associated_OperatingSystem,_time | stats count() | transpose
I would like to divide each value by count(Server_Name) is there a way to do that using the EVAL function?

somesoni2 · ‎03-15-2016

Try something like this

table Server_Name,Server_TotalPhysicalMemory,Server_Cores, Server_NumberofProcessors, Server_Domain,Server_IsVirtual,Server_LastScanDate,Server_SerialNumber, Server_Site, Associated_AppliationProductName,Associated_OperatingSystem,_time | stats count(*) as count_*  | eval divider=count_Server_Name | untable divider column value | eval value=value/divider | fields - divider

View solution in original post

somesoni2 · ‎03-15-2016

Try something like this

table Server_Name,Server_TotalPhysicalMemory,Server_Cores, Server_NumberofProcessors, Server_Domain,Server_IsVirtual,Server_LastScanDate,Server_SerialNumber, Server_Site, Associated_AppliationProductName,Associated_OperatingSystem,_time | stats count(*) as count_*  | eval divider=count_Server_Name | untable divider column value | eval value=value/divider | fields - divider

Eval Question for Table

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

[Puzzles] Solve, Learn, Repeat: Matching cron expressions

Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas

Data Management Digest – May 2026

Join the Conversation