About Vasu1

Vasu1 · ‎08-29-2022

I need to add another part before this search to make it work, but it works the way I want. Thanks for the response guys.

Vasu1 · ‎08-23-2022

Individual search work, but not combined. When I combined only the first one of the event pops up(first part of search), not the second.

Vasu1 · ‎08-23-2022

index = axway abc@gmail.com *INCL* | stats count | where count = 0 | eval description="File1 INCL Missing" |table description | append [search index = axway abc@gmail.com *POD* | stats count | where count = 0 | eval description="File2 POD Missing" |table description] Very much appreciate your reply. It should not be counted by the host. I apologize for that. Above is the search I am trying to search. All I am trying to do is combine search to alert us if any of the POD and INCL file is missing, and print the description for that search.

Vasu1 · ‎08-22-2022

I want to create an alert if any of the files are missing, a description printout for that. But this search only gives me one event although it should give me two. In a nutshell, the second part after append is not working. Individual search work. Please guide. It would be greatly appreciated. index = axway abc@gmail.com *INCL* | stats count by host | where count = 0 | eval description="File1 INCL Missing" |table description | append [search index = axway abc@gmail.com *POD* | stats count | where count = 0 | eval description="File2 POD Missing" |table description]

Posts	4
Solutions	0
Karma Given	2
Karma Received	0
Member Since	‎08-22-2022

Online Status	Offline
Date Last Visited	‎08-29-2022 12:55 PM

How to join two search with event count?

Re: How to join two search with event count?

Re: Join two search with event count

Re: Join two search with event count

How to join two search with event count?