Splunk Search
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

Problem with the counting

abhayneilam
Contributor
‎01-31-2013 03:01 AM

Hi,

I have a data like :
Name 1 2 3 4 5

abc 0 2 5 0 18
def 3 0 10 10 11
ghi 0 0 0 7 20

Now, I have 6 columns as "Name" , 1, 2, 3,4,5
I want my output as :

abc 3 ---> 3 becaue there are total of 3 more than 0 number against "abc" name
def 4 ---> 4 becaue there are total of 4 more than 0 number against "def" name
ghi 2 ---> 2 becaue there are total of 2 more than 0 number against "ghi" name

Please help in getting this thing done.

Thanks in advance !!

Tags (4)
0 Karma
Reply

martin_mueller
SplunkTrust
SplunkTrust
‎01-31-2013 03:29 AM

Here's a thought: Replace every non-zero number with a one, then sum up all columns.

0 Karma
Reply

martin_mueller
SplunkTrust
SplunkTrust
‎01-31-2013 09:09 AM

Not knowing the column names is no problem, addtotals will add together a total of all numerical columns.

All you'd have to do for that to work is to get the cells as either 1 or 0.

0 Karma
Reply

Ayn
Legend
‎01-31-2013 03:47 AM

Could you please stop ending all your posts with "please help"? 😛

0 Karma
Reply

abhayneilam
Contributor
‎01-31-2013 03:43 AM

But i dont know my column names in this case, only "Name" column is fixed but not "1","2","3","4","5", these no can changes month to month, Moreover I dont have to summing up the no. I have to get the count for the number which is more than 0

"abc" name is having 2,5 and 18( count is more than 0 ) in the above mentioned details , so against "abc" the total count will be 3

Please help

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Step into “Hunt the Insider: An Splunk ES Premier Mystery” to catch a cybercriminal ...

After a whole week of being on call, you fell asleep on your keyboard, and you hit a sequence of buttons that ...

SplunkTrust Application Period is Officially OPEN!

It's that time, folks! The application/nomination period for the 2026-2027 SplunkTrust is officially open. If ...

Announcing Modern Navigation: A New Era of Splunk User Experience

We are excited to introduce the Modern Navigation feature in the Splunk Platform, available to both cloud and ...