×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
aristidiskantas
Engager
Member since: ‎06-15-2022
‎06-15-2022
Community Statistics
Posts 2
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎06-15-2022
View All

Re: How to combine similar values into one table c...

by in Splunk Search
‎06-15-2022 01:27 AM
‎06-15-2022 01:27 AM
That worked! Thank you so mush for the input Giuseppe.  Wish you the best, Aris ... View more

How to combine similar values into one table colum...

by in Splunk Search
‎06-15-2022 01:04 AM
‎06-15-2022 01:04 AM
Hello everyone,  I am having two events with different sourcetypes that have similar fields with similar values however not the same. I have found a way to combine the fields by using coalesce, however I would like to combine the values as well in order to get a clear result I am running this search :   index="main" category="Foo" OR sourcetype="foo" | iplocation ip_address | eval severity_level = coalesce(severity, foo_severity) | geostats count by severity_level   and I am having the following results.    | longitude | latitude | HIGH | High | MEDIUM | Medium | LOW | Low | | 143.2104 | -33.494 | 39 | 4 | 40 | 30 | 15 | 5 |     And I want to get something like:   | longitude | latitude | HIGH | MEDIUM | LOW | | 143.2104 | -33.494 | 43 | 70 | 20 |     Could you please give a hint? Thank you very much in advance. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-15-2022 10:13 AM