Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Flashtimeline not showing when searching with a groupby i.e. "| stats count by"

benjwarner
Explorer
‎12-03-2012 03:35 PM

Hiya,

It seems that since upgrading splunk to v5, any searches which are grouped by a count. e.g.:

“test” | stats count by host

Do NOT show the flashtimeline at the top of the search results.

The flashtimeline DID show on the same queries before our upgrade.

If I remove the count by. E.g. above just search for. e.g.:

“test”

...the flashtimeline does display.

Any advice would be appreciated.

Tags (2)
0 Karma
Reply

benjwarner
Explorer
‎12-03-2012 06:29 PM

I've been talking to splunk about this, and they have provided an answer that I will share here.

There is a dropdown up the top which has the three options. "Smart", "Fast" or "Verbose". Selecting "Verbose" ensures that the flashtimeline is displayed.

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Education - Fast Start Program!

Welcome to Splunk Education! Splunk training programs are designed to enable you to get started quickly and ...

Five Subtly Different Ways of Adding Manual Instrumentation in Java

You can find the code of this example on GitHub here. Please feel free to star the repository to keep in ...

New Splunk APM Enhancements Help Troubleshoot Your MySQL and NoSQL Databases Faster

Splunk Observability has two new enhancements to make it quicker and easier to troubleshoot slow or frequently ...