Dashboards & Visualizations

Simple X over Y chart with any statistical functions

gerardsimms
New Member

Hi,

I am trying to make this graph they are temperatures the log is a CSV from a data logger.
Each entry has a unique time stamp.

I would like to make this graph be overtime without having to use a function like sum or avg. just a straight x over y graph excel style with all of the entries

source="C:\Users\gerard\Desktop\ilon.csv" | chart avg(Ambient_Air_Temperature) as "Ambient Air Temperature",
avg(Air_Supply_Temperature_Program_Pool) as "Air Supply Temperature Program Pool",
avg(Air_Supply_Temperature_Main_Pool) as "Air Supply Temperature Main Pool",
avg(Main_Pool_Temperature) as "Main Pool Temp",
avg(Program_Pool_Temperature) as "Program Pool Temp",
avg(Return_Air_Temperature) as "Return Air Temp",
avg(Solar_Panel_Temperature) as "Solar Panel Temp" by timestamp

I would also like a radial chart for each of these values to basicly display the temperature values in a gauge

any help would be great

cheers

Gerard

Tags (1)
0 Karma
1 Solution

yannK
Splunk Employee
Splunk Employee

the classic way is

| chart avg(field) over x by y

if needed to regroup by numeric ranges, you can group using the bucket command

| bucket y span=10 | chart avg(field) over x by y

otherwise the basic timechart can be used is one of the variable is the _time

| timechart span=1h avg(field) by x

View solution in original post

0 Karma

yannK
Splunk Employee
Splunk Employee

the classic way is

| chart avg(field) over x by y

if needed to regroup by numeric ranges, you can group using the bucket command

| bucket y span=10 | chart avg(field) over x by y

otherwise the basic timechart can be used is one of the variable is the _time

| timechart span=1h avg(field) by x

0 Karma
Get Updates on the Splunk Community!

Preparing your Splunk Environment for OpenSSL3

The Splunk platform will transition to OpenSSL version 3 in a future release. Actions are required to prepare ...

Easily Improve Agent Saturation with the Splunk Add-on for OpenTelemetry Collector

Agent Saturation What and Whys In application performance monitoring, saturation is defined as the total load ...

Explore the Latest Educational Offerings from Splunk [January 2025 Updates]

At Splunk Education, we are committed to providing a robust learning experience for all users, regardless of ...