Most Active Day and Least Active Day for IIS Web Traffic

IIS
SplunkNinja
You already voted!

The following Splunk query will return the most active and the least active days for web traffic in an IIS environment:

sourcetype="iis" | bucket span=1d _time | top limit=1 _time | eval Date=strftime(_time, "%m/%d/%Y") | eval Metric="Most Active Date" | append [ search sourcetype="iis" | bucket span=1d _time | rare limit=1 _time | eval Date=strftime(_time, "%m/%d/%Y") | eval Metric="Least Active Date"] | fields - _time, count, percent | fields Metric, Date

Share This:

Tagged: IIS Web Traffic

Leave A Comment? Click here to cancel reply.

Newest | Active

Sanjai

Active 5 days, 13 hours ago
bewafaha

Active 1 week ago
sadloveshayari

Active 1 week, 1 day ago
hivatatt

Active 1 week, 5 days ago
yogesh shingate

Active 1 week, 6 days ago