I have a field in Splunk that contains IPs such as 223.xx.xxx.1
query: index=traffic_logs ip_address=*|timechart span=1h count by ip_address
I want to write a query to timechart ips traffic that match in one of the ranges in the csv file below (it had ip ranges in decimal format), so the ip above should return http://thegigabit.com since it exists in the range.
(( 3743019008, -----> this is actually 184.108.40.206 if converted to IP format
3743020031, -----> range end 220.127.116.11
... View more