All Apps and Add-ons
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Can you help me produce a better scatter plot, which allows infinite dots?

dijikul
Communicator
‎09-30-2018 06:43 PM

Looking for a way produce a scatter plot that allows infinite dots (limited potentially only by memory).

The use case it to produce a scatter plot with dots of a settable size (or auto-adjusting based on scatter density) which visually demonstrates each and every single event result from a search.

More-specifically, I want every sign-in to our system to be represented on a scatter plot where X is the time and Y is the service-response-time. With thousands of sign-in's per minute, I need thousands of dots - either 1x1 pixel or 2x2, which results in a cloud-like pattern to be produced along the X series.

when response times go up, the 'cloud' of dots trends upwards and very-clearly identifies when an issue is affecting more than simply outliers.

0 Karma
Reply

niketn
Legend
‎09-30-2018 11:42 PM

@dijikul have you tried Splunk Machine Learning Toolkit app from Splunkbase which has several custom visualizations including Scatter Line Chart.

____________________________________________
| makeresults | eval message= "Happy Splunking!!!"
0 Karma
Reply

dijikul
Communicator
‎10-02-2018 11:36 AM

The line scatter plot shown here looks like what I'm envisioning in my head, but I want the X-axis to be time and the Y-axis to be response time. For every sign-in event.

Using an inputlookup in an example is a great way to obfuscate the data so that it's harder to recreate. I have response times; I have a timeline; why does my scatter line plot look like this: look like this

What am I doing wrong?

0 Karma
Reply
Get Updates on the Splunk Community!

[Puzzles] Solve, Learn, Repeat: Reprocessing XML into Fixed-Length Events

This challenge was first posted on Slack #puzzles channelFor a previous puzzle, I needed a set of fixed-length ...

Data Management Digest – December 2025

Welcome to the December edition of Data Management Digest! As we continue our journey of data innovation, the ...

Index This | What is broken 80% of the time by February?

December 2025 Edition   Hayyy Splunk Education Enthusiasts and the Eternally Curious!    We’re back with this ...