Average of different field values

tunix · ‎03-25-2014

Hi There

I want a simple table-view, with following information:
Name of different views, how often they were requestet per month (average).

My search is looking like this:

index="idx_MYINDEX" | bin _time span=1d | stats count as Views by _time,View_Name | fields - count | sort -Views

Result:

TimeStamp ViewName Views (count)

Now i want an average of each different field value in View_Name (in this example, I tryed it for a timespan 1d - not month)

Can someone please help me? I've tryed with "| stats avg(View_Name) but it didn't do what I expected.

Thank you in advance!

MuS · ‎03-25-2014

Hi tunix,

So here is our co-anser 🙂

MuS suggested this:

index="idx_MYINDEX" | bin _time span=1d | stats count as Views by _time,View_Name | timechart span=1d avg(Views) as avg_Views by View_Name

this should give you the result you expect

tunix replied and used this:
Thanks for help - this works for me..

index="idx_MYINDEX" | bin _time span=1d | stats count as Views by _time,View_Name | stats avg(Views) as avg_Views by View_Name | sort - Views

Cheers, MuS

Join the Conversation