Join by time range

stwong · ‎10-28-2020

Hi all,

Possible to join 2 search results like following?

Set 1:

_time

field1

field2

field3 (common field)

Set 2:

_time

fieldA (multiple values, contains start/end time)

fieldB

field3 (common field)

Then join with common field3, together with:

fieldA (start) < _time (Set1) < fieldA (end)

Thanks a lot.

Regards

/stwong

ITWhisperer · ‎10-28-2020

Rename _time in query 2 as part of the join, then you will be able to do your comparison / filter after the join

stwong · ‎10-28-2020

Thanks. Seems if join first with common field3, unable to do filter afterwards. Would you advise how? Sorry for the newbie question.

Thanks.

ITWhisperer · ‎10-29-2020

@stwong I don't understand what you mean. Perhaps if you gave some concrete examples of your queries and data we might be able to help more.

Join the Conversation