Solved: Re: How to round the output from chart command?

kiril123 · ‎12-27-2018

Hello,

I have produced a table which shows distances between the cities. The search is shown below:

my search | chart  avg(distance) by from_city, to_city

However the distances are shown as floating point numbers with 15 digits after the point. I want to round the number to only 1 digit after the point.

I have tried applying the round function as shown below but this didn't change anything:

my search | chart  avg(distance) by from_city, to_city | eval round(distance,1)

Do you have any suggestions?

p_gurav · ‎12-27-2018

Try this:

my search | chart  avg(distance) as distance by from_city, to_city | eval distance=round(distance,1)

Note: Rename field if you want to perform eval operation on it.

View solution in original post

p_gurav · ‎12-27-2018

Try this:

my search | chart  avg(distance) as distance by from_city, to_city | eval distance=round(distance,1)

Note: Rename field if you want to perform eval operation on it.

kiril123 · ‎12-27-2018

Thank you but this still doesn't round the numbers.

p_gurav · ‎12-27-2018

Try putting eval inside chart command as:

my search| chart  eval(round(avg(distance),1)) as distance

bwlm · ‎03-11-2020

thank you, that additional eval() worked. It was so frustrating that the "round()" and "floor()" commands can be used like this in a stats function or eval the field after the stats function... but with the chart functions they are charted immediately and simple function wrapping without "eval()" is not accepted as valid by the chart commands.

kiril123 · ‎12-27-2018

This has worked. Thank you!

How to round the output from chart command?

Routing logs with Splunk OTel Collector for Kubernetes

Welcome to the Splunk Community!

Tech Talk | Elevating Digital Service Excellence: The Synergy of Splunk RUM & APM