cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
atpsplunk11
Explorer
Member since: ‎01-19-2017
‎06-05-2020
Community Statistics
Posts 5
Solutions 0
Karma Given 1
Karma Received 1
Member Since ‎01-19-2017
Activity Feed
View All

Re: Why is the ResultsReaderJson giving me the fol...

by in Getting Data In
‎05-17-2019 11:55 AM
1 Karma
‎05-17-2019 11:55 AM
1 Karma
Use splunk SDK 1.6.5.0 with gson 2.8.2. This set up works for me fine. ... View more

Re: ResultsReaderJson gives error The import com.g...

by in All Apps and Add-ons
‎05-17-2019 11:54 AM
‎05-17-2019 11:54 AM
Use splunk SDK 1.6.5.0 with gson 2.8.2. This set up works for me fine. ... View more

Re: How to find event status changed

by in Splunk Search
‎05-16-2019 11:31 AM
‎05-16-2019 11:31 AM
This solution works well for me. I am able to get data from logs with multiple outage from different servers. Thank you. ... View more

How to find event status changed

by in Splunk Search
‎05-14-2019 08:47 AM
‎05-14-2019 08:47 AM
Hello everyone! We have a log file contains the following information, status 0 means server is up, 1 means down: Date/time Server Status 2019/02/11 120000 server1 1 2019/02/11 120000 server2 0 2019/02/11 123000 server1 0 This file contains many servers' status generated by a cron job. I want to write a Splunk query/search to show all servers which were down and for how long. My desire output would be similar to the following Server From To Duration server1 2019/02/11 120000 2019/02/11 123000 30 Thus I would find a server status is "1", then need to find the immediate status "0" for the same server to calculate the outage time. How do I write this search query? Since a server could be down for a long period, this log file could have multiple entries for same server continuously, such as 2019/02/11 120000 server1 1 2019/02/11 120000 server2 0 2019/02/11 120300 server1 1 2019/02/11 120300 server2 0 2019/02/11 130000 server1 0 Any help is appreciated! ... View more

How to implement corrolation base on 2 fileds

by in Splunk Search
‎02-19-2019 08:55 AM
‎02-19-2019 08:55 AM
Hello everyone! We have a log file contains the following information, status 0 means server is up, 1 means down: Date/time Server Status 2019/02/11 120000 server1 1 2019/02/11 120000 server2 0 2019/02/11 123000 server1 0 This file contains many servers' status generated by a cron job. I want to write a Splunk query/search to show all servers which were down and for how long. My desire output would be similar to the following Server From To Duration server1 2019/02/11 120000 2019/02/11 123000 30 Since a server could be down for a long period, this log file could have multiple entries for same server continuously, such as 2019/02/11 120000 server1 1 2019/02/11 120000 server2 0 2019/02/11 120300 server1 1 2019/02/11 120300 server2 0 2019/02/11 130000 server1 0 Any help is appreciated! ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM
Karma from
View All
Karma given to
View All