Plot Scatter Chart based on Time

Venkat_16 · ‎10-21-2014

I need to plot a scatter/line chart using the below data:

Time                TransID Duration    TransStatus
10/15/2014 2:06 AM  12101   10.811      Complete
10/15/2014 4:35 AM  13102   20.703      Failed
10/15/2014 6:51 AM  17103   34.712      Incomplete

I need to plot all the values with:

X-Axis - Time

Y-Axis - Duration

Marker Color - Based on TransStatus (say Green for Completed Transactions, Red for Failed Transactions, etc)

Marker Tooltip on mouse-over will display the TransID and few other details related to the transaction, say transaction amount etc.

timechart doesn't help me, as I need to plot all the values in the table.

I have tried table, stats, xyseries combo and chart - however I couldn't get it right.

I am new to D3 viz and planning to try that to get this done.

Could someone help me on how do I achieve this.

manus · ‎10-29-2014

I haven't found anything better than that:

|eval time=_time|table time Duration

Then you need to select scatter in the graph options.

But the times are in epoch.
http://answers.splunk.com/answers/1541/how-can-i-create-a-scatter-plot-of-data-points-distributed-ov...

I think it's a shame that Splunk cannot do that.

Plot Scatter Chart based on Time

Stay Connected: Your Guide to November Tech Talks, Office Hours, and Webinars!

Index This | When is October more than just the tenth month?

Observe and Secure All Apps with Splunk

Are you a member of the Splunk Community?

Plot Scatter Chart based on Time

Stay Connected: Your Guide to November Tech Talks, Office Hours, and Webinars!

Index This | When is October more than just the tenth month?

Observe and Secure All Apps with Splunk