X-axis time range

rameshlpatel · ‎06-20-2014

Hi,

I have timechart graph and i am showing that for the day. like Today, Yesterday etc.

Here problem is when I am seeing chart for today at time of 6 AM then its showing only 6 hrs X -axis line and its growing when time passed.

Here I need whole 24 hrs in X-axis without considering at what time I am seeing for the day.

martin_mueller · ‎06-20-2014

Let your search run from @d to @d+d instead of using Today which only runs until now. That way your search will cover 24 hours and the timechart will display the entire day.

rameshlpatel · ‎06-23-2014

I ran same example you given and its showing upto now. Is there any configuration behind this ? I am using SPLUNK 6.1 version.

martin_mueller · ‎06-20-2014

Works for me:

Local time is a bit past 6pm, the chart shows empty all the way until midnight.

rameshlpatel · ‎06-20-2014

Still in X axis _time showing upto current time.

martin_mueller · ‎06-20-2014

Yeah... if you get that message then you may have mixed up the two. Earliest should be @d (00:00 today), and latest should be @d+d (00:00 tomorrow / "24:00" today).

rameshlpatel · ‎06-20-2014

Should I have to add @d+d instead of 'now' ? If Yes then I am getting message as 'Earliest Time can be greater then Latest'.

X-axis time range

Built-in Service Level Objectives Management to Bridge the Gap Between Service & ...

Get Your Exclusive Splunk Certified Cybersecurity Defense Engineer Certification at ...

Share Your Ideas & Meet the Lantern team at .Conf! Plus All of This Month’s New ...