Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
334 results
Sorted by:
05-28-2018
10:21 PM
How can I use predict command with wildcard, as I have timechart with group by field. See below example query.
Query: index=_internal sourcetype=splunkd* | timechart count as Count by s...
Show results in replies (5)
-
See if this method gives you what you want. Its a different approach, but since predict doesn't s...
-
This query works, but it doesn't show same visualization as normal predict command shows (dotted l...
-
...xample index=_internal sourcetype=splunkd log_level!=INFO | timechart count by log_level | predict...
-
Just pass the remaining arguments which are static as you would normally do. | predict [ s...
-
...ename _field_list AS field_list | table field_list | map search="search <Your Search Here> | predict...
03-14-2017
12:28 PM
I'm using predict, and seeing good results, but I would like to clean up my visualization.
What I would like is to see past data and future predicted data with no overlap.
Using eval predict...
Show results in replies (4)
-
Run anywhere: * | timechart count as foo | predict foo AS predicted_foo | eval upper95(predict...
-
...elephony_credits_remaining) as credits | predict future_timespan=168 credits as predicted | eval predicted=i...
-
...in _time span=15s | stats count AS foo by _time | predict foo AS predicted_foo | eval upper95(predict...
-
Good news, everybody! This was entirely a PEBKAC issue. Working on this more today, I found the ...
12-29-2020
02:23 AM
Hello Splunk community, I need to do one prediction for two different time ranges in different span in one report. The objective is making alert on the prediction of rate of messages: 1- from 5 a...
04-22-2018
01:07 AM
Hi
I want to predict values of a field over time.
the result table of my search:
In the end of the search I use:
| timechart span=24h sum(sloc) as SLOC
| eval _time = strftime(_...
Show results in replies (5)
-
@matansocher, perform fieldformat on _time after the prediction command. index=_internal s...
-
@skoelpin... Predict command is very "unpredictable" LOL... true!!! @matansocher do read d...
-
...ount rows per day or search count!=0 before calling the predict command. Can you add some sample d...
-
To add on to this.. The predict command is very "unpredictable" and I typically stay away from u...
-
...ate and the SLOC field will then be zero, and I want to predict the value of the SLOC field based o...
10-19-2020
02:44 AM
1 Karma
...20min latest(Treshold) as Treshold avg(MyPredictedValue) as PredictedValue | predict "PredictedValue" as prediction algorithm=LLT holdback=12 future_timespan=96 upper95=upper95 lower95=l...
12-18-2019
03:03 PM
HI,
I have a graph that draws capacity and utilisation and predicts utilisation into the future.
I want to draw a threshold line for capacity , but the threshold's could to be either
- the l...
Saturday
06-16-2020
06:02 AM
...bsp; index = cisco_prod | timechart span=1h count as logins_hour |eval corr_lag= [`ACF_Correlation_Lag`]| predict "logins_hour" as prediction algorithm=LLP holdback=200 future_timespan=368 p...
08-10-2018
12:15 AM
1 Karma
Hi All,
I'm trying to write a search that looks at creating an alert where there is a significant spike in HTTP POST requests.
I am interested in using the predict command and alerting where t...
Show results in replies (4)
-
...arliest=-65m@m latest=-5m@m | timechart span=1m count as POST_Requests | predict POST_Requests as Predict...
-
The predict command must be preceded by the timechart command. The predict command requires time s...
-
The problem with predict, is that you can't use wildcard. Not very efficient way to this https://a...
-
When attempting to run the above search, I get the error message External search command 'predict...
08-26-2019
12:35 PM
...0 1292.87
But I get this error:
External search command 'predict' returned error code 1. .
I checked answers to similar issue and recommendation was to create a timechart.
The e...
