Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Flashtimeline not showing when searching with a groupby i.e. "| stats count by"

benjwarner
Explorer
‎12-03-2012 03:35 PM

Hiya,

It seems that since upgrading splunk to v5, any searches which are grouped by a count. e.g.:

“test” | stats count by host

Do NOT show the flashtimeline at the top of the search results.

The flashtimeline DID show on the same queries before our upgrade.

If I remove the count by. E.g. above just search for. e.g.:

“test”

...the flashtimeline does display.

Any advice would be appreciated.

Tags (2)
0 Karma
Reply

benjwarner
Explorer
‎12-03-2012 06:29 PM

I've been talking to splunk about this, and they have provided an answer that I will share here.

There is a dropdown up the top which has the three options. "Smart", "Fast" or "Verbose". Selecting "Verbose" ensures that the flashtimeline is displayed.

0 Karma
Reply
Get Updates on the Splunk Community!

Observability | How to Think About Instrumentation Overhead (White Paper)

Novice observability practitioners are often overly obsessed with performance. They might approach ...

Cloud Platform | Get Resiliency in the Cloud Event (Register Now!)

IDC Report: Enterprises Gain Higher Efficiency and Resiliency With Migration to Cloud  Today many enterprises ...

The Great Resilience Quest: 10th Leaderboard Update

The tenth leaderboard update (11.23-12.05) for The Great Resilience Quest is out >> As our brave ...