Solved: Can you help me generate stats per day?

darioapis · ‎02-05-2019

I have data like this:

 Time, A, B, C
01.01.2019. 11:00:00, 561, 756, 456
01.01.2019. 11:01:00, 661, 256, 123
01.01.2019. 11:02:00, 261, 456, 123

......

And I would want to combine A's ,B's, C's data in that way that I can plot moving per day. So I want to sum all activity over day per A, B, C and plot it how it moves day per day.

Thanks.

chrisyounger · ‎02-05-2019

Hi @darioapis

Does this work for you: YOUR_SEARCH | timechart sum(A) sum(B) sum(C)

Hope this helps

View solution in original post

vishaltaneja070 · ‎02-05-2019

@darioapis

In case of unspecified number of columns: Use

<your search> | timechart sum(*)

chrisyounger · ‎02-05-2019

Hi @darioapis

Does this work for you: YOUR_SEARCH | timechart sum(A) sum(B) sum(C)

Hope this helps

darioapis · ‎02-05-2019

Ok, what if I have unspecified number of columns and I want to do it on all except the _time.

Can you help me generate stats per day?

Splunk Observability Synthetic Monitoring - Resolved Incident on Detector Alerts

Video | Tom’s Smartness Journey Continues

3-2-1 Go! How Fast Can You Debug Microservices with Observability Cloud?