Hi @kranthimutyala,
you have to extract the hours value using a regex and then use an eval, something like this:
<your_search>
| rex field=your_duration "^(?<hours>\d+):(?<minutes>\d+):(?<seconds>\d+)\.(?<milliseconds>\d+)"
| eval duration_in_minutes=hours*60+minutes+if(seconds>0 OR milliseconds>0,1,0)
| table duration_in_minutes
Ciao.
Giuseppe
