×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
NathanaClarke
New Member
Member since: ‎08-20-2017
‎06-05-2020
Community Statistics
Posts 1
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎08-20-2017
Activity Feed
View All

How to chart over time based on small daily sample...

by in Splunk Search
‎08-20-2017 08:25 PM
‎08-20-2017 08:25 PM
Hi, I'm relatively new to creating splunk reports and simple ones have been easy but now I need a shortcut/help to get this done while I am still learning 😉 I am trying to create a report based on one type of event (firewall denies), by policy (the firewall deny group). I have a lot of these types of events coming in from multiple firewalls. I'd like to schedule a report that averages just the previous day's events per firewall deny policy and adds that average to a rolling chart that shows the last 30 days. I'm cognisant of keeping the effort my splunk host has to expend to a minimum so I only want to eval the previous day's events and just add that to a chart that I can download or share. Is that doable? ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:03 AM