spotypoti1

Activity Feed

Karma Re: Top10 in percent with lookup for somesoni2. ‎06-05-2020 12:48 AM
Karma Re: Top10 in percent with lookup for DalJeanis. ‎06-05-2020 12:48 AM
Karma Re: Top10 in percent with lookup for DalJeanis. ‎06-05-2020 12:48 AM
Posted Top10 in percent with lookup on Splunk Search. ‎04-04-2017 02:44 AM
Tagged Top10 in percent with lookup on Splunk Search. ‎04-04-2017 02:44 AM
Tagged Top10 in percent with lookup on Splunk Search. ‎04-04-2017 02:44 AM
Tagged Top10 in percent with lookup on Splunk Search. ‎04-04-2017 02:44 AM

Topics I've Started

Subject

Karma

Author

Top10 in percent with lookup

This is my first attempt to create a "bigger" splunk search. I tried it the last two weeks but am stuck now. Hopefully you can help here! I connected two csv hosts thru a lookup. The lookup creates fields that are named "look" in the hosts A and B. I want to show the top 10 values from host B in percent of host A. Example: "host" ... "look" A..............LP1 A..............LP4 A..............LP2 A..............LP1 B..............LP1 A..............LP4 B..............LP4 A..............LP4 B..............LP4 ... The Search should return a chart with the ratio "count LP (B)"/"count LP (A)" in percent for the top 10 LP* in host "B". The Example should show: LP4 66% LP1 33% I was able to return the top10 of host B. But how do i get done with the math? index=all [search index=all host=B| top 10 look| table look| format] Thank you!

Karma given to

User

Karma Count

Posts	1
Solutions	0
Karma Given	3
Karma Received	0
Member Since	‎04-04-2017

Online Status	Offline
Date Last Visited	‎06-05-2020 02:03 AM