Refine your search:

Vector Map

2

Thanks For Downloading!

Review the documentation below and follow any custom installation steps. If no install steps are listed, most Splunk Apps and Add-ons can be installed as follows:

Windows: Decompress the downloaded file using a tool like 7-Zip and place the resulting folder into %PROGRAMFILES%\Splunk\etc\apps. Then restart Splunk using the splunk restart command or the GUI.

Unix/Linux: Decompress the downloaded file using a tool like tar -xvf and place the resulting folder into $SPLUNK_HOME/etc/apps. Then restart Splunk using the splunk restart command or the GUI.

Description

This add-on provides a simple and lightweight UI module which can visualize geographical
information on a vector-based map. The map is rendered using SVG or VML depending on the
browser support. No browser plugins are required for the module to work correctly.

Usage

The module expects geoinformation in the form of a *ISO3166-2 country code* or state code
in the specified field in order to plot the results on the map. It's possible to define
an optional countField which allows to process already aggregated results.

Example:

<module name="HiddenSearch" layoutPanel="panel_row1_col1" autoRun="true">
    <param name="search">sourcetype=access_combined clientip=* | geoip clientip</param>
    <param name="earliest">-24h@h</param>
    <module name="VectorMap">
        <param name="mapType">world</param>
        <param name="field">clientip_country_code</param>
        <param name="backgroundColor">#333333</param>
    </module>
</module>

For a list of all possible module parameters see the module reference at your Splunk
installation once the Add-On is installed.

http://localhost:8000/modules#Splunk.Module.VectorMap

Credits

This module has been created by SPP - http://www.spp.at/

The map rendering is done by using a slightly modified version of the excellent jVectorMap
jQuery plugin: http://jvectormap.owl-hollow.net/

Versions and Release Notes

Version 1.0.2 (current version - updated Aug 12, 2011)
release notes:
Fixed a bug where only the first 100 results have been returned from the search job.
show older versions »
Version 1.0.1 (updated Aug 02, 2011)

posted 02 Aug '11, 21:07

ziegfried's gravatar image

ziegfried ♦
7.2k1315
accept rate: 52%

new version 12 Aug '11, 10:17

Be the first one to review!

Did you find this app useful?

Preview toggle preview

Details

This app is not covered by any support agreements in place with Splunk. If you have questions about the installation or operation of this app, please contact the author.

Version 1.0.2
Last Updated: Aug 12, 2011
Download App
Author: ziegfried
Version: 1.0.2
Splunk compatibility: 4.3, 4.2
Price: Free
License: Creative Commons BY 3.0
Downloads: 232

Follow this app

Log In to enable email subscriptions

RSS:

Reviews

Reviews + Comments

Related Questions

 
Ask a Question
see all »
Copyright © 2005-2012 Splunk, Inc. All rights reserved.