Splunk Search
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How to get count of c-ip from IIS logs indexed by splunk

ajaykulkarni
Engager
‎09-25-2012 05:14 AM

Hi All,

I am using Microsoft's Log Parser tool with which I can query my IIS logs.
Now I have a query to select different client ips and the count like,

select c-ip, count(c-ip)
FROM
File Name
group by c-ip

Same thing I need to try with splunk search, but I can't. 😞

Please help.

Tags (3)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

Ayn
Legend
‎09-25-2012 05:28 AM

Do you have the c_ip field or similar extracted in Splunk? Where are you encountering problems?

View solution in original post

Reply
Solved! Jump to solution
Solution

Ayn
Legend
‎09-25-2012 05:28 AM

Do you have the c_ip field or similar extracted in Splunk? Where are you encountering problems?

Reply
Solved! Jump to solution

ajaykulkarni
Engager
‎09-25-2012 05:38 AM

I am extremely sorry, its my mistake.
In IIS logs we have c-ip and splunk has provided c_ip.
Solved the problem.
Thanks @Ayn.

0 Karma
Reply
Get Updates on the Splunk Community!

Observe and Secure All Apps with Splunk

  Join Us for Our Next Tech Talk: Observe and Secure All Apps with SplunkAs organizations continue to innovate ...

Splunk Decoded: Business Transactions vs Business IQ

It’s the morning of Black Friday, and your e-commerce site is handling 10x normal traffic. Orders are flowing, ...

Fastest way to demo Observability

I’ve been having a lot of fun learning about Kubernetes and Observability. I set myself an interesting ...