Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Alert set for count in range

cbiraris
Path Finder
2 weeks ago

Hi Team,

I am trying to setup an alert if the count of errors are in range of  between 10 to19(more then 10 and less than 19). 

for example:

index=abc sourcetype=xyz "errors"
only if count >= 10 AND count <=19, should only trigger alert.


please help

thank you




Labels (1)
Labels
0 Karma
Reply

ITWhisperer
SplunkTrust
SplunkTrust
2 weeks ago 
| where count >= 10 AND count <=19

Then trigger your alert if there are any results

0 Karma
Reply

cbiraris
Path Finder
2 weeks ago

Thank you its working

0 Karma
Reply
Get Updates on the Splunk Community!

Introducing the Splunk Community Dashboard Challenge!

Welcome to Splunk Community Dashboard Challenge! This is your chance to showcase your skills in creating ...

Wondering How to Build Resiliency in the Cloud?

IT leaders are choosing Splunk Cloud as an ideal cloud transformation platform to drive business resilience,  ...

Updated Data Management and AWS GDI Inventory in Splunk Observability

We’re making some changes to Data Management and Infrastructure Inventory for AWS. The Data Management page, ...