Solved: Re: Take an average of values in a cell from every...

harshal_chakran · ‎06-12-2014

Hi,

I have a CSV file, which looks as follows:

ID time value parameter 1 0000-0015 12 param1 1 0015-0030 3 param1 1 0030-0045 3 param1 1 0045-0100 45 param1 1 0100-0115 4 param1 1 0115-0130 6 param1 1 0130-0145 65 param1 1 0145-0200 75 param1

I am trying to get the average of column "value" for every 4 rows, with time displayed as "0000-0100", to get the output as displayed below:-

ID time value parameter 1 0000-0100 15.74 param1 1 0100-0200 37.5 param1

I have tried many search commands but couldn't succeed.

Please Help...!!!

somesoni2 · ‎06-12-2014

Try this

source=yourcsvfile.csv | table ID, time, value parameter | streamstats count as sno | eval sno=ceil(sno/4) | rex field=time "(?<start>.*)-(?<end>.*)" | stats first(start) as start last(end) as end avg(value) as value by ID, parameter,sno | eval time=start."-".end | table ID, time, value, parameter

View solution in original post

somesoni2 · ‎06-12-2014

Try this

source=yourcsvfile.csv | table ID, time, value parameter | streamstats count as sno | eval sno=ceil(sno/4) | rex field=time "(?<start>.*)-(?<end>.*)" | stats first(start) as start last(end) as end avg(value) as value by ID, parameter,sno | eval time=start."-".end | table ID, time, value, parameter

harshal_chakran · ‎06-12-2014

Thanks a ton somesomi2...!!!

Take an average of values in a cell from every four rows

Can’t make it to .conf25? Join us online!

Community Content Calendar, September edition

Splunkbase Unveils New App Listing Management Public Preview

Leveraging Automated Threat Analysis Across the Splunk Ecosystem

Are you a member of the Splunk Community?

Take an average of values in a cell from every four rows

Can’t make it to .conf25? Join us online!

Community Content Calendar, September edition

Splunkbase Unveils New App Listing Management Public Preview

Leveraging Automated Threat Analysis Across the Splunk Ecosystem