how to plot some count on gmaps instead of plot... - Splunk Community

Splunk Search

Hi ,

I have a 23 faults in XXXX city with X as latitude and Y as longitude,
Now I want to plot fault count (23) on gmaps for the given lat and long.

The event count in my data for city XXXX is one, I know we can plot this 1 on gmaps for given lat/long but instead of ploting this one i want to plot 23 on gmaps.

kindly note that there are no repeated cities and lat/long in my data,each row is unique.

So I cannot proceed with and geo commands.

Can anyone thing over it and help me to plot count on gmaps for given lat/long.

Try using iplocation and the geostats command vs. the gmaps app.

clientip=* | iplocation clientip allfields=true | geostats count by clientip

Or to see more good stuff with it:

clientip=* | iplocation clientip allfields=true | geostats translatetoxy=false count by clientip,City,Continent,Country,Region,MetroCode,Timezone,lat,lon

Or:

clientip=* | iplocation clientip allfields=true | geostats translatetoxy=false count by clientip,City,Continent,Country,Region,MetroCode,Timezone,lat,lon | table clientip * | sort - geobin

Get Updates on the Splunk Community!

Using Machine Learning for Hunting Security Threats

WATCH NOW Seeing the exponential hike in global cyber threat spectrum, organizations are now striving more for ...

Observability Newsletter Highlights | March 2023

March 2023 | Check out the latest and greatestSplunk APM's New Tag Filter ExperienceSplunk APM has updated ...

Security Newsletter Updates | March 2023

March 2023 | Check out the latest and greatestUnify Your Security Operations with Splunk Mission Control The ...