Hi, I have multiple events with the following JSON object. {
"timeStamp": "2024-02-29T10:00:00.673Z",
"collectionIntervalInMinutes": "1",
"node": "plgiasrtfing001",
"inboundErrorSummary": [
{
"name": "400BadRequestMalformedHeader",
"value": 1
},
{
"name": "501NotImplementedMethod",
"value": 2
},
{
"name": "otherErrorResponses",
"value": 1
}
]
} I am trying to extract the name/values from the inboundErrorSummary array and display the sum total of all the values of the same name and plot them by time. So the output should be something like Date 400BadRequestMalformedHeader 501NotImplementedMethod otherErrorResponses 2024-02-29T10:00:00 1 2 1 2024-02-29T11:00:00 10 40 50 Even a total count of each name field should also work. I am quite new to splunk queries, so hope someone can help and also explain the steps on how its done. Thanks in advance.
... View more