Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Multi Line Graph from Multiple Hosts

howelsmovingcas
New Member
‎08-05-2012 06:33 PM

I am looking to create a simple multiline graph from the following logs:

Hostname=host1 cpu_percentage=X etc..
Hostname=host2 cpu_percentage=Y etc..
Hostname=host3 cpu_percentage=Z etc..

Basically looking for a timechart of cpu_percentage by Hostname over time. I have tried searching for a simple example similar to this but cannot seem to find anything. I tried using this:

search>sourcetype=performance_logs | table _time,Hostname,cpu_percentage

Is what I am looking to do possible or will I need to overlay each graph separately?

Thank you for your time,
HMC

0 Karma
Reply

gkanapathy
Splunk Employee
Splunk Employee
‎08-05-2012 07:53 PM 
sourcetype=performance_logs | timechart avg(cpu_percentage) by Hostname
Reply
.conf21 Now Fully Virtual!
Register for FREE Today!

We've made .conf21 totally virtual and totally FREE! Our completely online experience will run from 10/19 through 10/20 with some additional events, too!

Get Updates on the Splunk Community!