cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
matiasburni
Engager
Member since: ‎08-13-2015
‎06-05-2020
Community Statistics
Posts 3
Solutions 0
Karma Given 0
Karma Received 1
Member Since ‎08-13-2015
Activity Feed
View All

Re: How to compare a json value field in a 1h wind...

by in Alerting
‎10-28-2015 09:14 PM
‎10-28-2015 09:14 PM
Assuming you plan to run this search every hour, try something like this host="10.102.165.212" sourcetype=_json | spath| WHERE LIKE(master, "master") | stats latest('extra.memory') AS Current earliest('extra.memory') as LastHour | where Current>=LastHour*1.5 ... View more

Re: Editing RegExp on the "Extract Fields", what's...

by in Splunk Search
‎08-14-2015 02:34 AM
1 Karma
‎08-14-2015 02:34 AM
1 Karma
Thanks for your help, The final query is... I didin't know regex101.com, very useful !!! ^((.*)(eng\-builds\/)(?P[^\/]+))|(?:[^\/\n]*\/){2}(?P[^\-]+) ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM