DNS Server Analytical ASim: Added 3 sample queries to the Data Connector

2021-09-12 22:59:40 -05:00 · 2021-09-12 22:59:40 -05:00 · 27c5d5df71
--- a/Connectors/NXLogDnsLogs.json
+++ b/Connectors/NXLogDnsLogs.json
@ -13,12 +13,16 @@
    ],
    "sampleQueries": [
        {
-            "description" : "",
-            "query": ""
+            "description" : "DNS Server Top 5 Domains by number of lookups",
+            "query": "NXLog_parsed_DNS_Server_ASim_view\n| sort by Lookups\n| take 5\n| render piechart title=\"Top 5 Domains by number of lookups\""
        },
        {
-            "description" : "",
-            "query" : ""
+            "description" : "DNS Server Top 5 EventOriginalTypes (Event IDs)",
+            "query" : "NXLog_parsed_DNS_Server_ASim_view\n| extend EventID=strcat('Event ID ',trim_end(".0",tostring(EventOriginalType)))\n| summarize CountByEventID=count() by EventID\n| sort by CountByEventID\n| take 5\n| render piechart title=\"Top 5 EventOriginalTypes (Event IDs)\""
+        },
+        {
+            "description" : "DNS Server analytical events per second (EPS)",
+            "query" : "NXLog_parsed_DNS_Server_ASim_view\n| where EventEndTime >= todatetime('2021-09-08 02:30')\n| where EventEndTime <  todatetime('2021-09-08 03:00')\n| summarize EPS=count() by bin(EventEndTime, 1s)\n| render timechart title=\"DNS analytical events per second (EPS) - All event types\""
        }
    ],
    "dataTypes": [