Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How to sort events by number of occurances?

letharion
Engager
‎06-18-2014 03:36 AM

I'm trying to do

"[Simple text search]" | top limit=50 count

To so the 50 highest occurrences of my search for which ever time resolution I'm search by.

This gives me

Error in 'top' command: The output count field conflicts with the input field 'count'. Use the 'countfield' option to specify a different name.

Tags (1)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

letharion
Engager
‎06-18-2014 03:45 AM

"[Simple text search]" | timechart count

gave me what I wanted. Lacking the limit, but that's fine for me.

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

letharion
Engager
‎06-18-2014 03:45 AM

"[Simple text search]" | timechart count

gave me what I wanted. Lacking the limit, but that's fine for me.

0 Karma
Reply
Get Updates on the Splunk Community!

Webinar Recap | Revolutionizing IT Operations: The Transformative Power of AI and ML ...

The Transformative Power of AI and ML in Enhancing Observability   In the realm of IT operations, the ...

.conf24 | Registration Open!

Hello, hello! I come bearing good news: Registration for .conf24 is now open!   conf is Splunk’s rad annual ...

ICYMI - Check out the latest releases of Splunk Edge Processor

Splunk is pleased to announce the latest enhancements to Splunk Edge Processor.  HEC Receiver authorization ...