Shanmukhanand Naikwade
- Total activity 13
- Last activity
- Member since
- Following 0 users
- Followed by 0 users
- Votes 0
- Subscriptions 3
Activity overview
Latest activity by Shanmukhanand Naikwade-
Shanmukhanand Naikwade commented,
ok. thank you
-
Shanmukhanand Naikwade commented,
can you please share your query?
-
Shanmukhanand Naikwade commented,
'takeFirst' is not the best solution available because, from the row line "8.8.8.8 | 80, 443, 443, 80, 80, 80" It will only capture 80 and not 443. After a lot of research i think ther...
-
Shanmukhanand Naikwade commented,
There is an idea posted on sumo. SLP-I-3601 - https://ideas.sumologic.com/ideas/SLP-I-3601 I would encourage all of you who visit this post to vote the idea.
-
Shanmukhanand Naikwade commented,
Hi Marc, Have you found solution to your problem yet ? Also, i cannot find the idea mentioned above, any updates on it ?
-
Shanmukhanand Naikwade commented,
Hi Joseph,I am struggling with the same scenario. However, dstport join with ", " displays all the duplicate values as well. To qoute your example here. It gives us the result as - IP Address ...
-
Shanmukhanand Naikwade commented,
Hi Jorge, No, it does not meet the requirements. I do not want market_name in my group by fields. If i use the query you provided, it will give me the result like - Fruit Market_name price ...
-
Shanmukhanand Naikwade commented,
So the query would be something like | avg(price) as "avg_price" by fruit. But is there a way i can get market_name in the query result as well? In splunk, the query would look like | stats avg(pri...
-
Shanmukhanand Naikwade commented,
rownum fruit market_name avg price 1 apple m1m2m3 2 2 orange m2m3 2
-
Shanmukhanand Naikwade created a post,
Are there in group by operators for String fields
In Sumo, can we have group by operator for string fields. For example, here is the sample table. Fruit Market_name price apple m1 2 apple m2 3 apple m3 1 orange m2 3 orange m3 1 ...