Reporting
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How can I produce long term trend reports?

jim_cross
Engager
‎10-04-2016 03:09 AM

I work on a system which only has the capacity to retain data for 30 days. Once a week we produce a report which aggregates the data by a couple of dimensions. We would like to be able to produce long-term trend reports on that aggregated data (i.e. over multiple years). What is the best way to do that?

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

sundareshr
Legend
‎10-04-2016 08:47 AM

Sounds like you need Summary Index

http://wiki.splunk.com/Community:Summary_Indexing

View solution in original post

Reply
Solved! Jump to solution

aaraneta_splunk
Splunk Employee
Splunk Employee
‎12-01-2016 07:14 PM

@jim_cross - Did sundareshr's answer below regarding Summary Indexing help you out? If yes, please click “Accept” below the answer to resolve this post. If no, please leave a comment with more feedback. Thanks.

0 Karma
Reply
Solved! Jump to solution
Solution

sundareshr
Legend
‎10-04-2016 08:47 AM

Sounds like you need Summary Index

http://wiki.splunk.com/Community:Summary_Indexing

Reply
Get Updates on the Splunk Community!

Threat Hunting Unlocked: How to Uplevel Your Threat Hunting With the PEAK Framework ...

WATCH NOWAs AI starts tackling low level alerts, it's more critical than ever to uplevel your threat hunting ...

Splunk APM: New Product Features + Community Office Hours Recap!

Howdy Splunk Community! Over the past few months, we’ve had a lot going on in the world of Splunk Application ...

Index This | Forward, I’m heavy; backward, I’m not. What am I?

April 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...