Current view: XPLG V7 (Latest). Available: XPLG V6 and XPLG V5

Skip to end of metadata
Go to start of metadata

Synopsis

Displays Analytics details.

Syntax

analytics 

Required Arguments

None

Optional Arguments

Folder/log/server/apptag as source

Description

The analytics function returns the XpoLog Analytics results of the specified sources. The result set includes Analytics Name (the problem found by the Analytics engine), Analytics Type (Autodetected = result is based on XpoLog Analytics automatic detection, Predefined = result is based on a user rule that was saved), Analytics Risk (based on the severity of result, XpoLog Analytics engine determines the risk level from 1-10), Analytics Confidence (the level of certainty of the result from 1-5), Count (the number of events matched the identified problem in the result set).

Examples

Example 1:  

* in log.secure | analytics 

Returns a table of all analytics results from the log source 'secure'.

Example 2:  

* in log.secure | analytics | where Analytics Risk > 5 and Analytics Confidence > 3 | order by Analytics Name asc

Returns a table of all analytics results from the log source 'secure', where only identified problems with Risk greater than 5, and confidence greater than 3 will be displayed. sorted alphabetically.

Example 3:  

* in log.secure | analytics | where Analytics Risk > 5 and Analytics Confidence > 3 | interval 1 minute

Returns a table of all analytics results from the log source 'secure', where only identified problems with Risk greater than 5, and confidence greater than 3 will be displayed in a 1 minute time buckets.

  • No labels