Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Compare results to previous results?

ksharma7
Path Finder
‎04-28-2020 11:17 AM

If say I have data from December to march in csv every 5 min , and no data from Marc to April.if say in month of nay i got correct data again. Now i want to compare count of success in this hour to sane hour onw, two and three weeks back frim same date but un month of December say how to do ut

Tags (2)
0 Karma
Reply

to4kawa
SplunkTrust
SplunkTrust
‎04-28-2020 09:15 PM

sample:

| gentimes start=12/01/20 end=05/01/21
| makecontinuous span=1h starttime
| eval _time=starttime, month=strftime(starttime,"%B") , counts=random() % 100, date=strftime(starttime,"%T")
| bin span=1h _time
| chart sum(counts) by date month
0 Karma
Reply
Get Updates on the Splunk Community!