I have a search as follows
field_id="X" | eval b=len(_raw) | stats sum(b) as b | eval mb=round(b/1024/1024,2) | eval gb=round(b/1024/1024/1024,2)
Which displays the result in bytes,megabytes and gigabytes for a particullar search.
Now how can i make to display the timechart count for each day and get the average count for the data?
↧