Hi, I am using ELK GA 5.0.0. In my timelion, I am plotting success error ratio. My log contain time, user, and response. Response can be either error or success. My current timelion code is; .es(index=mylogs-*, q='response:error',metric=count).divide(.es(index=mylogs-*, q='response:success',metric…

Nico-DF May 18, 2017, 7:05am 6

You can use Regex in your label.

It will be something like:

.label(regex='.* username.keyword:(.*) > .*', label='$1')

5 Likes

Kibana Timelion Question Split Label More than 1 field

Topic		Replies	Views
Split in Timelion Kibana timelion	3	5455	August 5, 2017
Timelion - Failure Rate problem Kibana timelion	3	277	August 18, 2020
Kibana Timelion Question Split Label More than 1 field Kibana timelion	2	1472	October 12, 2020
How split function works in Timelion chart Kibana timelion	7	2395	April 26, 2021
Split chart in Timelion Kibana timelion	4	1991	October 4, 2019

Elasticsearch is a trademark of Elasticsearch BV, registered in the U.S. and in other countries
Trademarks
Terms
Privacy
Brand
Code of Conduct

Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.

How to split lines based on a term in Timelion using split() or other?

Related topics