Hi All, I have an external website and Splunk Dashboard. I want to display the contents of Splunk dashboard directly into the external website without navigating to splunk website. Is there a way to do it. Thanks. ... View more

Is anyone aware of the license cost (per year) for Splunk ITSI module and also if there are any maintainance cost as well? ... View more

I have a query in splunk index = * STATUS_CODE earliest=-2mon@mon latest=-1mon@mon | fields STATUS_CODE | rex field=_raw "STATUS_CODE:(?.{0,1}\d)" | eval success=if(status_code in(0,1),1,0) | timechart count as total sum(success) as success | eval success_rate=round((success/total)*100,3) | eval success_rate=success_rate + "%" | table _time success_rate | append [search index = * STATUS_CODE earliest=-1mon@mon latest=@mon | fields STATUS_CODE | rex field=_raw "STATUS_CODE:(?.{0,1}\d)" | eval success=if(status_code in(0,1),1,0) | timechart count as total sum(success) as success | eval success_rate=round((success/total)*100,3) | eval success_rate=success_rate + "%" | table _time success_rate] I want to show the single value visualization displaying the increase/decrease in success_rate, but its not displaying correctly. I mean i need to add a timechart command again but thats not working. Can anyone help ... View more

I have a query in splunk index = * STATUS_CODE earliest=-2mon@mon latest=-1mon@mon | fields STATUS_CODE | rex field=_raw "STATUS_CODE:(?.{0,1}\d)" | eval success=if(status_code in(0,1),1,0) | timechart count as total sum(success) as success | eval success_rate=round((success/total)*100,3) | eval success_rate=success_rate + "%" | table _time success_rate | append [search index = * STATUS_CODE earliest=-1mon@mon latest=@mon | fields STATUS_CODE | rex field=_raw "STATUS_CODE:(?.{0,1}\d)" | eval success=if(status_code in(0,1),1,0) | timechart count as total sum(success) as success | eval success_rate=round((success/total)*100,3) | eval success_rate=success_rate + "%" | table _time success_rate] I want to show the single value visualization displaying the increase/decrease in success_rate, but its not displaying correctly. I mean i need to add a timechart command again but thats not working. Can anyone help ... View more

I have a dashboard having 3 panels in a row like A B C but i want A and B panel stacked together vertically and then C separately. Is there a way ... View more

I have a query with time range earliest=-2mon@mon latest=-1mon@mon . Now can i store the result as the month name which comes between earliest and latest ? E.g., for above example its should be March ... View more

Hi i have 2 diff dashboards. Is there a way to make them look like a sheet view kind of thing in splunk. I mean in a single view can we dynamically display two dashboards ... View more

Hi i have a column _time getting displayed in the results due to timechart used in the query. Its currently getting displayed in the form of 03-2020 but i want to show it like March or Mar. Is there a way to do that? ... View more