Application: Tranaction eventbreaker

Tranaction eventbreaker

Author: kbains	Date Added:	Aug 28, 2008	Flag as Miscategorized Mistyped Inappropriate
Downloads:13	Last Updated:	Aug 28, 2008
Type: Transactions, Search Commands	License:	Creative Commons
Type: Transactions, Search Commands	Price:	Free

Version: 1.0

Free Download

Description

When doing a CLI search for transactions, it can be hard to know the start and end points of the events. This script adds line breaks (with timestamps) between the events.

To use the script:

- download the script into $SPLUNK_HOME/etc/searchscripts
- make sure the script has the right permissions and owner
- if using the enterprise version make appropriate changes to authorize.conf
- pipe search results to eventbreaker

cheezburglar:deep $ ./splunk search " sourcetype=transaction | transam fields=id | eventbreaker"

Rating

(0 votes)

http://www.splunkbase.com/-3rw4y93

Categories

Types

Application: Tranaction eventbreaker

Tranaction eventbreaker

Categories:

Description

Rating

Preview Application: