Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How to get count of c-ip from IIS logs indexed by splunk

ajaykulkarni
Engager
‎09-25-2012 05:14 AM

Hi All,

I am using Microsoft's Log Parser tool with which I can query my IIS logs.
Now I have a query to select different client ips and the count like,

select c-ip, count(c-ip)
FROM
File Name
group by c-ip

Same thing I need to try with splunk search, but I can't. 😞

Please help.

Tags (3)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

Ayn
Legend
‎09-25-2012 05:28 AM

Do you have the c_ip field or similar extracted in Splunk? Where are you encountering problems?

View solution in original post

Reply
Solved! Jump to solution
Solution

Ayn
Legend
‎09-25-2012 05:28 AM

Do you have the c_ip field or similar extracted in Splunk? Where are you encountering problems?

Reply
Solved! Jump to solution

ajaykulkarni
Engager
‎09-25-2012 05:38 AM

I am extremely sorry, its my mistake.
In IIS logs we have c-ip and splunk has provided c_ip.
Solved the problem.
Thanks @Ayn.

0 Karma
Reply
Get Updates on the Splunk Community!

Introducing the 2024 SplunkTrust!

Hello, Splunk Community! We are beyond thrilled to announce our newest group of SplunkTrust members!  The ...

Introducing the 2024 Splunk MVPs!

We are excited to announce the 2024 cohort of the Splunk MVP program. Splunk MVPs are passionate members of ...

Splunk Custom Visualizations App End of Life

The Splunk Custom Visualizations apps End of Life for SimpleXML will reach end of support on Dec 21, 2024, ...