Solved: Is there a way to query without using index, sourc...

Jitendra33 · ‎12-20-2022

Hi All,

I want to create Multiple tables/Panels inside a dashboard which will have static message like DASHBAORD A, DASHBAORD B, DASHBAORD C etc.. These message's will drill down to respective dashboards A,B and C.

Currently i am using a query :

index=*  
| head 1
| eval DashboardName="Dashboard A"
|table DashboardName

Is there a way to put a query with static message without to go and search a a set of events using index,source or sourcetype. I don't want to unnecessary use this.

bowesmana · ‎12-20-2022

Use target="_blank" to open in the new tab

<a href="dashboard_name" target="_blank">blablabla</a>

https://www.w3schools.com/tags/att_a_target.asp

View solution in original post

bowesmana · ‎12-20-2022

Use

| makeresults
| eval Dashboard="Dashboard A"
| table Dashboard

or you can add an html panel with <a> tags in there

<panel>
  <html>
    <a href="....">Dashboard A</a>
  </html>
</pamel>

Jitendra33 · ‎12-20-2022

That really helped @bowesmana . Also while using href, how to use that to open the link in a new tab?

bowesmana · ‎12-20-2022

Use target="_blank" to open in the new tab

<a href="dashboard_name" target="_blank">blablabla</a>

https://www.w3schools.com/tags/att_a_target.asp

Is there a way to query without using index, source or sourcetype?

eval

fields

table

What You Read The Most: Splunk Lantern’s Most Popular Articles!

See your relevant APM services, dashboards, and alerts in one place with the updated ...

Index This | What goes away as soon as you talk about it?

Are you a member of the Splunk Community?