Hi there, everything works fine with ur solution, thanks!! 🙂 ... View more

hi ed! your comment helped me a lot!! thank u very much 🙂 i was facing this problem for days... instead of to_date in the sql-query, i work with FROM_UNIXTIME. this works better for me. i now get the right timestamps in splunk. but... i also get an amount of unnecessary messages: dbx2417:WARN:ResultSetOutputPayload - NULL Timestamp value in column=ColumnInfo{idx=1, sqlType=93, columnName='sn_creationdate'} thx, chris ... View more

Hi guys, thank you very much für you answers. But its not exactly what im lookin for. Both solutions print out two columns with the result of each search. But my problem is, to build a thrid column, where the result is a diff of the first and second. ... View more