cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
dkotowsk
Engager
Member since: ‎01-30-2018
‎06-05-2020
Community Statistics
Posts 2
Solutions 0
Karma Given 2
Karma Received 0
Member Since ‎01-30-2018
Activity Feed
View All

How to create a stats count by aggregating multipl...

by in Splunk Search
‎01-30-2018 12:19 PM
‎01-30-2018 12:19 PM
How do you create a stats count after aggregating multiple fields into one? Example: Given the following table: index saddr daddr A 10.0.0.1 192.168.1.8 A 10.0.0.1 192.168.1.9 How can I get a table like the following? index addr count A 10.0.0.1 2 A 192.168.1.8 1 A 192.168.1.9 1 ... View more

Different time-frames for different indices/parts ...

by in Dashboards & Visualizations
‎01-30-2018 12:05 PM
‎01-30-2018 12:05 PM
Is it possible to use different timeframes with different indices? For example: (index=index_a earliest="30/01/18:00:00:00" latest="30/01/18:00:05:00") OR (index=index_b earliest="30/01/18:10:00:00" latest="30/01/18:10:05:00")) dest_ip="10.0.0.1" What is the right way to do this? ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM
Karma given to
View All