How to find average power consumption from two sou...

boney_s · ‎12-05-2014

Hai friends,

I have logged two SIMILAR files in splunk, which contains details of different meters like voltage,current,power consumption etc. of two seasons along with timestamp (which are saved in two different logs). How can I compute the "difference" in average power consumption of each meter in two seasons seperately. Also if the consumption is greater than a threshold value I need to write it in to a database. Every fields of two files are same and only difference is in their filename. First line of log is shown below:
Date=2014-11-13 MeterId=75842578 Voltage=227.25 Current=29.5554 KwAC=6.71646 KW=12.954 Frequency=49.7778

Thanks in advance

somesoni2 · ‎12-05-2014

Try something like this

index=YourIndex source=Season1LogFile OR source=Season2LogFile | chart avg(Voltage) as Voltage avg(Current) as Current avg(KwAC) as KwAC avg(KW) as KW over MeterId by source

THis should give you a side by side comparison of avg of different fields from both sources.

boney_s · ‎12-07-2014

That's fine for finding the average value. Below is the logic that i need to do it in splunk:

1. if( avg(Current of Season1LogFile) - avg(Current of SeasonFile2LogFile)  > 7 )
            1. Display it in a chart
            2. Write the value to a database table

The average value of Current should be compared based on per MeterID basis

How to find average power consumption from two sourcetype?

Enterprise Security Content Update (ESCU) | New Releases

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

Index This | What are the 12 Days of Splunk-mas?