How to build a timechart to show endpoint respons...

jprovenzale · ‎04-04-2022

Hello,

I have 3 fields from which I need to build a line chart on a Time series.

ServerTime

Endpoint

ResponseTime

I need to show endpoint response time over a 95 percentile on servertime.

So the servertime will be on the Y-Axis, the time series on the X-Axis and a legend that shows the endpoints.

Can you please suggest a query that would achieve this.

Thank you

jprovenzale · ‎04-05-2022

Hi,

Aplologies. In my frustration I did not articulate fully.

I have actually figured it out now.

Thanks for your time.

jprovenzale · ‎04-06-2022

Quick explanation of the issue.

I actually over complicated the problem when it was very simple.
I needed to show endpoint response times over am 99% percentile of servtime, which is the length of time of the transaction.

In the end it was a very easy query. Set up your search and filters and the timechart line looks like this.

timechart p99(servetime) by endpoint

Thanks

VatsalJagani · ‎04-05-2022

@jprovenzale - If you can please post an answer with an explanation so others can get benefit from it in the future.

Also, accept your answer. Thanks!!!

bowesmana · ‎04-04-2022

You have 3 dimensions

response time - this would typically be the Y axis

time of event - that is the X axis

servertime - what is this? and what is its relationship to response time and endpoint?

How to build a timechart to show endpoint response time over a 95 Percentile?

eval

stats

timechart

Index This | When is October more than just the tenth month?

Observe and Secure All Apps with Splunk

What’s New & Next in Splunk SOAR

Are you a member of the Splunk Community?