About shashankjuloori

shashankjuloori · ‎03-25-2020

Thanks for the help.

shashankjuloori · ‎03-25-2020

Sorry, i cant paste the logs due to security reasons. Events are logged based on the field foundation , suppose A, B, C. and logs will be like index=* Foundation=A | field1 | field2| ...message......errortest.../message index=* Foundation=A | field1 | field2| ...message......errortest.../message index=* Foundation=B | field1 | field2| ...message......errortest.../message index=* Foundation=C | field1 | field2| ...message......errortest.../message here i need to segregate the events based on the error text and total count , and the output should be like Foundation | error count | total count A count count B count count C count count and i am sorry for messing up the things.

shashankjuloori · ‎03-24-2020

field1= || field2= || field3= || message------------error text ----------/message this is the error message structure. here i need to separate the events which contains error text, suppose it to be errors and display both total count and error count.

shashankjuloori · ‎03-24-2020

error message has to be extracted from raw text. Then i need to display total events count and error events count.

shashankjuloori · ‎03-24-2020

There is a requirement in which i need to display total count and errors(in total count). error message is in raw text.

Posts	5
Solutions	0
Karma Given	0
Karma Received	0
Member Since	‎03-24-2020

Online Status	Offline
Date Last Visited	‎06-05-2020 02:03 AM

Displaying 2 counts (error and total)

Re: Displaying 2 counts (error and total)

Re: Displaying 2 counts (error and total)

Re: Displaying 2 counts (error and total)

Re: Displaying 2 counts (error and total)

Displaying 2 counts (error and total)