Hey there!
I am new to ELK stack. I have the data of measurements of different devices by time. Every 15 min, I get new values per each device (and value in t is always bigger or equal to value in t-1). What I want to do, is to calculate the sum of the latest values of each device within a given time period. Is it possible to do in Timelion or Kibana directly? My data structure is like this:
timestamp; device_id; value
timestamp; device_id; value
timestamp+15min; device_id; value
timestamp+15min; device_id; value
Edit: Docouments are in one index named "measurements".
My first thought would be a Data Table visualization like this;
I used Metric = max bytes, but you would use your value I think.
And then I split rows with a Terms aggregation by extension.raw, but you would use your device_id for that.
Hi Lee,
looks like it is what I need. I think after having lots of devices, showing only the top -n- won't be the best possibility. Is it possible also to remove the limitation? I can put it to 100 or 1000, but it would be great to know how to remove it
EDIT: Is it also possible to have timestamp field in the table? I want to show the value graph by time per each device?
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.
