cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Als123
Explorer
Member since: ‎04-28-2021
‎12-06-2021
Community Statistics
Posts 20
Solutions 0
Karma Given 4
Karma Received 0
Member Since ‎04-28-2021
Activity Feed
View All

Re: Unix Server CPU usage Monitoring

by in Alerting
‎12-06-2021 06:01 AM
1 Karma
‎12-06-2021 06:01 AM
1 Karma
Hi @Als123, did you already take the logs about CPU usage or do you have also to take them? If yes, you have to run a simple search like this (for Linux): index=os sourcetype=ps host=your_host | multikv | table USER PID PSR pctCPU CPUTIME pctMEM RSZ_KB VSZ_KB TTY S ELAPSED COMMAND ARGS If instead you have also to take logs, you have to istall on the target serve the Splunk TA-Linux Add-On (https://splunkbase.splunk.com/app/833/) enabling the inputs you want (CPU Usage). Ciao. Giuseppe ... View more

Re: Splunk dashboard

by in Monitoring Splunk
‎06-10-2021 10:49 AM
‎06-10-2021 10:49 AM
Hi, Is this Null value expected? It seems that the "events" field is not find in your search results and because of this it is returning the results as Null. If this value is expected and you want to rename the Null column you could append the following to your search.   | rename Null as <field_alias>   ... View more

Re: Drilldown Editor

by in Dashboards & Visualizations
‎06-10-2021 01:34 AM
‎06-10-2021 01:34 AM
Hi @Als123 , In this case you will have to modify the search string used in drilldown. The following query will work in case you want to see raw events for the particular HTTP status code clicked on.  index="main" httpstatus="$row.httpstatus$"   Here, I have assumed that httpstatus is the field name for HTTP status code. Ref - https://docs.splunk.com/Documentation/SplunkCloud/8.2.2105/Viz/DrilldownLinkToSearch ... View more

Re: Panel Hide

by SplunkTrust in Dashboards & Visualizations
‎06-05-2021 11:26 PM
1 Karma
‎06-05-2021 11:26 PM
1 Karma
@Als123  Are you looking for this? <form> <label>Dropdown</label> <fieldset submitButton="false"> <input type="dropdown" token="firstDropDown"> <label>firstDropDown</label> <choice value="A">A</choice> <choice value="B">B</choice> <choice value="C">C</choice> <change> <condition match="'value'==&quot;A&quot; or 'value'==&quot;B&quot;"> <set token="tkn_a_or_b">true</set> <unset token="tkn_c"></unset> </condition> <condition match="'value'==&quot;C&quot;"> <set token="tkn_c">true</set> <set token="tkn_a_or_b">true</set> </condition> <condition> <unset token="tkn_c"></unset> <unset token="tkn_a_or_b"></unset> </condition> </change> </input> </fieldset> <row> <panel depends="$tkn_a_or_b$"> <single> <title>Panel 1</title> <search> <query>| makeresults | stats count</query> <earliest>-24h@h</earliest> <latest>now</latest> </search> <option name="drilldown">none</option> </single> </panel> <panel depends="$tkn_a_or_b$"> <single> <title>Panel 2</title> <search> <query>| makeresults | stats count</query> <earliest>-24h@h</earliest> <latest>now</latest> </search> <option name="drilldown">none</option> </single> </panel> <panel depends="$tkn_a_or_b$"> <single> <title>Panel 3</title> <search> <query>| makeresults | stats count</query> <earliest>-24h@h</earliest> <latest>now</latest> </search> <option name="drilldown">none</option> </single> </panel> <panel depends="$tkn_a_or_b$"> <single> <title>Panel 4</title> <search> <query>| makeresults | stats count</query> <earliest>-24h@h</earliest> <latest>now</latest> </search> <option name="drilldown">none</option> </single> </panel> <panel depends="$tkn_c$"> <single> <title>Panel 5</title> <search> <query>| makeresults | stats count</query> <earliest>-24h@h</earliest> <latest>now</latest> </search> <option name="drilldown">none</option> </single> </panel> </row> </form>   Thanks KV ▄︻̷̿┻̿═━一 If any of my reply helps you to solve the problem Or gain knowledge, an upvote would be appreciated. ... View more

Re: Response time

by in Splunk Search
‎05-14-2021 07:02 AM
‎05-14-2021 07:02 AM
HI @Als123, if this answer solves your need, please accept it for the other people of Community. Ciao and happy splunking. Giuseppe P.S.: Karma Points are appreciated 😉 ... View more

Re: Splunk Dashboard

by in Dashboards & Visualizations
‎05-03-2021 12:52 AM
‎05-03-2021 12:52 AM
Hi @Als123, see in the Splunk dashboard examples App (https://splunkbase.splunk.com/app/1603/), there's an example that answers to your need. Ciao. Giuseppe ... View more

Re: Splunk dashboard

by in Dashboards & Visualizations
‎04-29-2021 04:10 AM
‎04-29-2021 04:10 AM
Hi @gcusello , Thank you for your help. I am having another one question.  In panel 1, I am having two graphs (Success and Failure) for present date. In panel 2, I am having two graphs (Success and Failure) for yesterday's date. I need all 4 graphs (panel 1 and panel 2) in a single graph. With yesterday and today named in X or Y axis. Please help on this .   ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎12-06-2021 10:17 AM
Karma given to
View All