Solved: How to add values to a chart with another color ba...

chadman · ‎07-11-2016

I have a chart that show some ping times. I would like to show values with "NA" as red in the chart and set their values to 1000. Currently they just show up as zero. Here is my current search.

sourcetype="mysearch" host=host123*  | timechart avg(internal_time) as "Ping Time"

somesoni2 · ‎07-11-2016

Try like this

your current search | replace "NA" with 1000 in "Ping Time"

Give the solution from below post for colors
https://answers.splunk.com/answers/58335/change-chart-bar-color-based-on-data-value.html

View solution in original post

somesoni2 · ‎07-11-2016

Try like this

your current search | replace "NA" with 1000 in "Ping Time"

Give the solution from below post for colors
https://answers.splunk.com/answers/58335/change-chart-bar-color-based-on-data-value.html

somesoni2 · ‎07-11-2016

Do you get a series/column named "N/A" ?

chadman · ‎07-11-2016

Currently I don't. I just see a bar chart with "Ping Time". If the value is not a number and is "NA" it shows up at 0 on my chart. I would like that so how up in red and have a value of 1000 instead of "NA"

How to add values to a chart with another color based on a certain value?

Building Reliable Asset and Identity Frameworks in Splunk ES

Cloud Monitoring Console - Unlocking Greater Visibility in SVC Usage Reporting

Automatic Discovery Part 3: Practical Use Cases

Are you a member of the Splunk Community?

How to add values to a chart with another color based on a certain value?

Building Reliable Asset and Identity Frameworks in Splunk ES

Cloud Monitoring Console - Unlocking Greater Visibility in SVC Usage Reporting

Automatic Discovery Part 3: Practical Use Cases