cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
rodrigrc
Explorer
Member since: ‎03-01-2019
‎11-26-2022
Community Statistics
Posts 5
Solutions 0
Karma Given 0
Karma Received 1
Member Since ‎03-01-2019
Activity Feed
View All

Re: Button to run splunk query

by in Dashboards & Visualizations
‎08-27-2020 07:13 PM
‎08-27-2020 07:13 PM
I have also the same problem.. I want search particular parameter inside the host file with the selectable date drop down Below source code only shows one field and also not giving any output. ++++++++++ <form> <label>ODSEE Backend SEARCH</label> <fieldset autoRun="false" submitButton="true"> <input type="text" token="twguid"> <label>Search ID</label> <default>put your search here</default> <prefix>'twguid'="</prefix> <suffix>"</suffix> </input> </fieldset> <row> <panel> <table> <search> <query> index=auth_odsee* host="*" conn=* twguid=* | search $twguid$ | table '_date' 'twguid' 'host' </query> <earliest>-10m</earliest> <latest>now</latest> </search> </table> </panel> </row> </form> +++++++++++++++++++++ ... View more

Re: How do I create splunk query to get the total ...

by in Splunk Search
‎02-29-2020 05:36 PM
‎02-29-2020 05:36 PM
if i put this search query, i get the correct total no output, but with "zero" blocked output. +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ sourcetype="pihole:log" tag=dns tag=network tag=resolution message_type="Query" |stats count as total, count(eval(query_type="Blocked")) as blocked |eval percent=round((blocked/total)* 100,1) total blocked percent 20433 0 0.0 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ And below results shows the correct no. of blocked outputs, but too many entries outputs +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ sourcetype="pihole:log" tag=dns tag=network tag=resolution |stats count as total, count(eval(query_type="Blocked")) as blocked |eval percent=round((blocked/total)* 100,1) total blocked percent 91921 3683 4.0 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ... View more

How do I create splunk query to get the total perc...

by in Splunk Search
‎02-29-2020 02:48 AM
‎02-29-2020 02:48 AM
I'm new to splunk and need further guidance to be able to accomplish my dashboard for Pi-Hole: Could some expert guide me how? Queries Blocked tag=dns tag=network tag=resolution query_type=blocked |stats count Total Queries sourcetype="pihole:log*" tag=dns tag=network tag=resolution query |stats count How do I create splunk query to get the total percentage of the two results Queries Blocked/Total queries x 100 = ? I just need the exact value so i can just simply copy and paste the good answer here to my splunk field. Your input is highly appreciated. ... View more

Re: How to install it on pfsense

by in Getting Data In
‎03-02-2019 04:19 PM
‎03-02-2019 04:19 PM
Thanks, appreciated it.. Have installed it now and able to capture the logs from my pfsense, do you know how to do the search for squid access log, need to filter only the source ip/time/and the website. ... View more

How to install it on pfsense

by in Getting Data In
‎03-01-2019 09:08 PM
1 Karma
‎03-01-2019 09:08 PM
1 Karma
Can you provide tutorial to install it pfsense. 1. currently the splunk enterprise is installed on my mac 2. need to know how to install splunk forwarder to the latest pfsense, need step by step for noob. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎11-26-2022 10:10 AM
Karma from
View All