Splunk Search
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to List all Long running calls?

moovon
New Member
‎08-21-2023 10:09 PM

Each call in my own application contains a unique identifier.
Want to list down all the current calls which are running for more than 100 seconds in the system.

Labels (2)
Labels
Tags (1)
0 Karma
Reply

moovon
New Member
‎08-22-2023 01:23 AM

My own application

You can assume like this , there are lots of logs being printed in splunk..

void APImethod() {
   log ("method start")
   // lots of processing
   log ("method end")
}

`my_unqiueId = some_random_number status=200 message=Successfully created resource` 


, so want to list down all the current calls where processing is taking more than 100secs.. real time ones

0 Karma
Reply

gcusello
SplunkTrust
SplunkTrust
‎08-22-2023 02:24 AM

Hi @moovon,

I suppose that you already extracted fields because they seem to be in jsn formatand that "log" is the timestamp of the "Method start" and "methid" end, otherwise you should share some sample log to analyze them.

so you have only to run a simple search like the following:

index=your_index status=200 message="Successfully created resource"
| rename "method end" AS method_end "method start" AS method_start
| stats 
   latest(method_end) AS method_end 
   earliest(method_start AS method_start 
   BY my_unqiueId
| eval  method_end-method_start

Ciao.

Giuseppe 

0 Karma
Reply

gcusello
SplunkTrust
SplunkTrust
‎08-21-2023 11:29 PM

Hi @moovon,

are you speaking of a Splunk App or about your own application?

if your own application, pleae share some sample of your logs.

Ciao.

Giuseppe

0 Karma
Reply
Get Updates on the Splunk Community!

Index This | Why did the turkey cross the road?

November 2025 Edition  Hayyy Splunk Education Enthusiasts and the Eternally Curious!   We’re back with this ...

Enter the Agentic Era with Splunk AI Assistant for SPL 1.4

  🚀 Your data just got a serious AI upgrade — are you ready? Say hello to the Agentic Era with the ...

Feel the Splunk Love: Real Stories from Real Customers

Hello Splunk Community,    What’s the best part of hearing how our customers use Splunk? Easy: the positive ...