Hi Toni, aggregations and chaining of functions applied to data sets like in Splunk are currently not supported by Graylog.
Cheers, Jochen On Monday, 11 January 2016 09:54:45 UTC+1, [email protected] wrote: > > Hello, > > does someone know if it is possible to calculate with graylog? > Before we used graylog we worked with splunk, there we could calculate > with fields. It looks like: > > sourcetype= .... | stats sum(size) by srcip | rename sum(size) as Size | > sort 20 -Size | eval Size=(Size/1024/1024/1024) > > to get the traffic per ip used in the network. > Is there anything simular in graylog? > > Greetings, > Toni > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/57ca48d3-2ef3-4e7c-b108-34dafa527a1a%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
