Hi,
I have graph with SUM (total bytes) as metric and router_name as term. I was wondering whether it is possible to apply a filter or similar and only shows values where the SUM is greater then X so I can automatically filter on routers exceeding a certain amount of traffic.
hi @Sjaak01,
this isn't possible in Kibana right now. All filters evaluate properties of a document. What you are trying to do is filter based on the result of an aggregation (on the SUM). This would be similar to filtering with a HAVING-clause in SQL.
Elasticsearch can do such a filter using a bucket selector https://www.elastic.co/guide/en/elasticsearch/reference/current/search-aggregations-pipeline-bucket-selector-aggregation.html.
However, this functionality is not exposed in Kibana. There is an existing enhancement request for this feature: https://github.com/elastic/kibana/issues/17544 so I would encourage you to leave extra comments and questions there.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.