I am trying to apply anomaly detection on count field.
Base query: index=test sourcetype=web source="test.log" WEB_URL="test"|timechart count by WEB_SOURCE_IP
-time IP 1 IP 2 . . IP N
timestamp Count Count Count
timestamp
Timestamp
But in the assistant for obvious reasons I am only getting option of choosing the IPs and _time in the fields to select dropdown. I need guidance on how can I approach here.
... View more
I'm fetching the data from a CSV file, but the issue with my data is that some of the values are in PDT and some are in PST.
The format is 2016-06-15 04:55 PM PDT . I just want all these values to be of same zone minus the time zone at the end. I want to display my data over a timechart.
... View more