Sumologic query to show data by date
I have created Sumologic dashboard to show some errors in the application. What I want is show the error per date. It show the error but it doesn't aggregate the same error messages as the messages have some GUID. This is the sample part of the query:
_sourceCategory="playGames/web-app-us"
and ERR
| timeslice 1d
| count _timeslice, message
Solution
I believe you need to format the message and remove the GUID. So all the messages with GUID will be aggregate to single message. You can use regex to format the messages and remove the GUID. The sample query look like this and use as needed. The sample error message is like this
Error occurred. Exception: System.Exception: my custom error message: 1121fd05-065b-499f-b174-2a13efdaf8b5
And the Sumologic query
_sourceCategory="dev/test-app"
and "[Error]"
and "Error occurred"
// | timeslice 1d
| formatDate(_receiptTime, "yyyy-MM-dd") as date
| replace(_raw,/my custom error message: ([0-9A-Fa-f\-]{36})/,"my custom error message") as finalMessage
| count date, finalMessage
| transpose row date column finalMessage
This video shows step by step guidance. https://youtu.be/Nxzp7G-rUh8
- How to sign in kubernetes dashboard?
- How to show metrics broken down by dimensions on the dashboard?
- fix plot in Folium in streamlit
- Scrolling on only some pages in Quarto dashboard
- Node-Red Image on Dashboard
- Cisco MSO/NDO API to add/remove staticport request using Postman
- Change width of callout-block in Quarto dashboard
- Return an Error Message in Plotly Dash and place at the top of the page
- Writing a Power BI measure to check multiple records in a related table based on values in both tables
- Can I use the dashboard the WSO2 DAS from other application java
- How to Create an Editable DataTable in Shiny with Tooltips and Always-Visible Input Fields?
- Controlling scatter chart markers in Azure Data Explorer dashboard using KQL
- How do I create a complicated aggregated measure in Power Bi for use on a dashboard?
- How to display a shorter title if the sidebar is collapsed?
- Assigned To Me Dashboard - Azure DevOps
- Problem with positioning of charts in superset dashboard
- Problems with dynamically added python shiny server modules
- Facet_row_spacing increasing with increasing facet rows
- How to create a Grafana Dashboard for my OpenTelemetry instruments > Collector > Tempo setup
- how to reset "alerting" state in Grafana
- how to count rows of a correspondent value?
- power bi division variable measure
- how to show a value (calculated with shiny server) in a quarto dashboard valuebox
- Why does this Vim command not execute properly?
- How can I make a cumulative sum graph in grafana, from an elasticsearch data source?
- Remove white area between header and body in dashboard Quarto
- multiple filters inside a box in dashboard Quarto
- Shiny Dashboard Reactive Content Issue
- Angular 2 Dashboard application web api call at initialization
- Power BI conditional formatting - matrix and multiple conditions