Hi. I have summary index_sum, which has 2 events, 2 attributes:
A1_sum, A2_sum
1590482539, 7722527
1591080961, 7722525
I have also index2, where a lot of time events are stored. The index time _time is important. I want to search the max(A1_sum) from index_sum and use this value to filter values from the index2.
something like this:
index2
| where _time>max(A1_sum)
can you help me, please, with this problem?
↧