I am trying to create a search that looks at the average number of errors over the past 4 weeks, but only looking at the days that match the current day. (I am using the past 4 Mondays as an example, I have created a macro to use in the search string to get the actual current day).
Currently I am just using `date_wday=monday` in the initial search string, and setting the time range to the past however many weeks. This seems to work perfectly if I select the past two weeks, the job runs in about 2-4 seconds. However if I set the time range to the past 3 weeks or more, the search takes 300+ seconds.
I would have no idea what would be a more efficient way of performing this task, the exact same issue occurs when I use multiple `earliest`/`latest` to achieve the same thing.
If anyone knows what could be causing this, please let me know!
↧