×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
JackM15
Engager
Member since: ‎09-07-2023
‎09-25-2023
Community Statistics
Posts 2
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎09-07-2023
View All

Re: Is it possible to map a source and destination...

by in Dashboards & Visualizations
‎09-08-2023 12:05 PM
‎09-08-2023 12:05 PM
Thanks so much! This worked for me. Not super related, but do you know if it's possible to display the IP addresses instead of longitude and latitude on the cluster map? ... View more

Is it possible to map a source and destination IP ...

by in Dashboards & Visualizations
‎09-07-2023 11:52 AM
‎09-07-2023 11:52 AM
Hello, I am trying to use one cluster map to visualize the locations of a user's source and destination IPs for Duo logs. Currently, I have two separate cluster maps for each. Source IP Address Query: index="duo" extracted_eventtype=authentication_v2 user.name="$user.name$" access_device.ip!="NULL" | iplocation access_device.ip | geostats count by City   Destination IP Address Query: index="duo" extracted_eventtype=authentication_v2 user.name="$user.name$" auth_device.ip!="NULL" | iplocation auth_device.ip | geostats count by City   I'm somewhat new to visualizations and dashboarding, and was hoping for some assistance on writing a combined query that would display both source and destination IPs on a cluster map. ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎09-25-2023 06:47 PM