Hi,
Assume i have some 4 search Queries like Q1,Q2,Q3 and Q4 . These Four Queries were no realted to each other and these queries will display a single unique output value ..Now my quesion can i display the output of these four queries in a table format in html like this ..
Q1 - output | Q2 - output |
Q3 - output | Q4 - output |
Where Q1 - output,Q2 - output,Q3 - output,Q4 - are the output values from the four search queries..How can i do this...please help..Thanx
AFAIK, not exactly. But there are choices.
You could have a dashboard with 4 single value panels, which would look similar, but would not be an html table.
See Create Simple Dashboards in the Splunk docs.
You could write a program (in the language of your choice) using the Splunk API. That program could format the output however you like. But this seems like overkill for most cases.
See the Splunk REST API tutorial for more info.