cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
jorgeoa
Explorer
Member since: ‎06-10-2015
‎06-05-2020
Community Statistics
Posts 5
Solutions 1
Karma Given 0
Karma Received 1
Member Since ‎06-10-2015
Activity Feed
View All

Re: Can't get CartoDB Torque app work, anybody cou...

by in All Apps and Add-ons
‎11-03-2015 02:01 AM
‎11-03-2015 02:01 AM
Hi cwhong, I'm trying, for example, "index=*" to get all the events. The search button doesn't do anything. ... View more

Can't get CartoDB Torque app work, anybody could? ...

by in All Apps and Add-ons
‎10-23-2015 04:14 AM
‎10-23-2015 04:14 AM
Hello, I've installed the new CartoDB Toque app in Splunk but nothing works in it. I can enter the app home but the search field doesn't work, no matter what string I write, nothing happens. Looking at the github page of the app I see that there are some files that the app package doesn't have, like for example some config files in the "default" directory. Could anybody make it work? Thanks! ... View more

Re: stats values() doesn't return all values

by in Splunk Search
‎07-15-2015 09:57 AM
‎07-15-2015 09:57 AM
Hello jeremiahc4, I appreciate the fdi01's answer but it didn't help me in solving my problem. When I found the real problem and solution by modifying the query, I posted that solution. That's why I marked my explanation as accepted. ... View more

Re: stats values() doesn't return all values

by in Splunk Search
‎06-10-2015 02:06 AM
1 Karma
‎06-10-2015 02:06 AM
1 Karma
Thanks for the answer fdi01, The problem was that the field "act" have the same values in lower and upper case, and it seems that the "by src_act" doesn't interprets that cases in the same way as the search events does (search events ignore word case but "by" not). I solved the problem using lower() in the eval expression: eval src_act=lower(src.".".act) ... View more

stats values() doesn't return all values

by in Splunk Search
‎06-10-2015 01:06 AM
‎06-10-2015 01:06 AM
Hello, I'm new with splunk and I'm trying to get all the different values of a field with stats values() command with results grouped by another field. Here is the query: src=* | eval src_act=src.".".act | stats values(vendor) as vendors dc(vendor) as num_vendors by src_act | where num_vendors>1 The maximum number of vendors returned by the query is two, but searching with the "view events" link of a result, the real number of different vendors is three or four in some cases. The same problem occurs using the list() function, it only shows the elements from a maximum of two different vendors. I tried to modify the list_maxsize param in limits.conf file but it doesn't solve the problem, even with the list() function, no more that 2 different values in "vendors" field. Anybody can help me? Thank you very much! Regards. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:03 AM
Karma from
View All