Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- About meia
meia
Engager
Member since:
08-09-2018
06-05-2020
Community Statistics
| Posts | 9 |
| Solutions | 0 |
| Karma Given | 1 |
| Karma Received | 0 |
| Member Since | 08-09-2018 |
Activity Feed
- Karma Re: How to create a table based if condition result? for MuS. 06-05-2020 12:47 AM
- Posted Re: some of the values are not able see when use table on Splunk Dev. 08-09-2018 07:15 PM
- Posted Re: some of the values are not able see when use table on Splunk Dev. 08-09-2018 05:43 PM
- Posted Re: some of the values are not able see when use table on Splunk Dev. 08-09-2018 05:42 PM
- Posted Re: some of the values are not able see when use table on Splunk Dev. 08-09-2018 05:37 PM
- Posted Re: some of the values are not able see when use table on Splunk Dev. 08-09-2018 05:21 PM
- Posted Re: some of the values are not able see when use table on Splunk Dev. 08-09-2018 05:07 PM
- Posted Re: some of the values are not able see when use table on Splunk Dev. 08-09-2018 03:48 PM
- Posted Re: some of the values are not able see when use table on Splunk Dev. 08-09-2018 02:14 PM
- Posted some of the values are not able see when use table on Splunk Dev. 08-09-2018 01:05 PM
- Tagged some of the values are not able see when use table on Splunk Dev. 08-09-2018 01:05 PM
Topics I've Started
| Subject | Karma | Author | Latest Post |
|---|---|---|---|
| 0 |
08-09-2018
05:42 PM
_time IdValue locationValue scoreValue lstdev avgpred lowerbound diff
2017-10-18 1 001 4.5 some values
2017-10-18 2 001 1.5 some -------
2017-10-18 3 001 3.2 some ------
2017-10-18 4 001 6.1 some ------
2017-10-18 5 001 7.4 some -------
2017-10-18 6 001 8.3 some -------
.
.
.
... View more
08-09-2018
05:37 PM
_time IdValue locationValue scoreValue lstdev avgpred lowerbound diff
2017-10-18 1 001 4.5 some values
2017-10-18 2 001 1.5 some -------
2017-10-18 3 001 3.2 some ------
2017-10-18 4 001 6.1 some ------
2017-10-18 5 001 7.4 some -------
2017-10-18 6 001 8.3 some -------
.
.
.
... View more
08-09-2018
05:21 PM
I was trying to print the id, location score and for all the ids with scores I am planning to the variance avg and lsdev.
but it is calculating for only first row
... View more
08-09-2018
05:07 PM
index=*** sourcetype=*******
| bin _time span=1d
| rex "\[Id=(?[^\,]*?),[\s ].*?,[\s ]score=(?[^\,]*?),[\s ].*?,[\s ]location=(?[^\,]*?)," max_match=0
| streamstats avg(scoreValue) AS avgpred, stdevp(scoreValue) AS lstdev , var(scoreValue) AS varpf by locationValue,IdValue, _time
| eval lowBound=avgpred-lstdev
| eval difference = if(scoreValue<lowBound,1,0)
| streamstats min(lowBound) as lowerBound min(difference) as diff by locationValue,IdValue, _time
| table _time locationValue IdValue lowerBound diff avgpred lstdev
... View more
08-09-2018
03:48 PM
_time id name score avg stdev
2017-10-18 36 hel 51 56 32
37 Lel 62
38 my 27
I don't why I am getting avg and stdev for first row
but I am unable see result for other rows
... View more
08-09-2018
02:14 PM
for example, I want to show the original percentageValue because based on that value we can see the and the variance and standard deviation for that pf from all set of pf values
... View more
08-09-2018
01:05 PM
index=** sourcetype=**** location=00000
| bin _time span=1d
| rex "\[Id=(?<IDValue>[^\,]*?),[\s ].*?,[\s ]percentage=(?<percentageValue>[^\,]*?),[\s ].*?,[\s ]location=(?<locationValue>[^\,]*?),"
max_match=0
| fields *
| stats avg(percentageValue) AS avgpred, stdevp(percentageValue) AS lstdev , var(percentageValue) AS varpf by locationValue,IDValue, _time
| table _time locationValue,IDValue,percentageValue
But I am not able to see the percentageValue and locationValue in table
... View more
- Tags:
- splunk-enterprise
