Hi

maybe this gives you enough hints for your own issue?

index=_internal sourcetype=splunkd* 
| timechart span=1m useother=f count as Count by sourcetype where stdev in top2
| untable _time sourcetype count1
| foreach "*" 
    [ eval column_value=count1, column_name=sourcetype ] 
| fields - sourcetype count1
| predict column_value future_timespan=14 
| filldown column_name 
| eval {column_name}=column_value, "prediction({column_name})"='prediction(column_value)',
    "lower95(prediction({column_name}))"='lower95(prediction(column_value))',
    "upper95(prediction({column_name}))"='upper95(prediction(column_value))' 
| eval _lower = "lower95(prediction(".column_name."))", _upper = "upper95(prediction(".column_name."))", _predicted = "prediction(".column_name.")" 
| fields - column_value column_name "prediction(column_value)"  upper95* lower95*

This is based on @kamlesh_vaghela's example and @VatsalJagani 's resolution for his issue.

r. Ismo