Solved: How to create a pie chart after applying math on c...

sjs · ‎01-12-2023

Hey people, my requirement is as such

I have extracted these columns from my data using the query

my query | rex "filterExecutionTime=(?<FET>[^,]+)" | rex "ddbWriteExecutionTime=(?<ddbET>[^)]+)" | rex "EXECUTION_TIME : (?<totalTime>[^ ms]+)" | eval buildAndTearDowTime=(tonumber(FET)) + (tonumber(ddbET)) |table totalTime FET ddbET buildAndTearDownTime

I want to have buildAndTearDown as totalTime - (FET+ ddbET)

once I have all the three values required (FET, ddbET, buildAndTearDown) I want to put these values in a pie chart.

Another question I have is why is

This statement

eval buildAndTearDowTime=(tonumber(FET)) + (tonumber(ddbET))

is giving me null value

Thanks 😊

bowesmana · ‎01-12-2023

To make the pie chart, do

| table FET ddbET buildAndTearDownTime
| transpose 0

View solution in original post

sjs · ‎01-12-2023

OMG, that worked as charm

can I add any legends about the time on to the right side or somewhere because ddbET is so small, it is not visible

sjs · ‎01-12-2023

Thanks that was so silly of me, could you please help me on the pie chart part too

bowesmana · ‎01-12-2023

To make the pie chart, do

| table FET ddbET buildAndTearDownTime
| transpose 0

bowesmana · ‎01-12-2023

You have spelt buildAndTearDownTime incorrectly

| eval buildAndTearDowTime=(tonumber(FET)) + (tonumber(ddbET))

missing n in Down

How to create a pie chart after applying math on column values extracted?

chart

eval

Platform Newsletter Highlights | March 2023

Enterprise Security Content Updates (ESCU) - New Releases

Thought Leaders are Validating Your Hard Work and Training Rigor