Synopsis

Displays the distribution over time of all values under the specified column(s) as appear in the log(s).

Note - this function is a large resource consumer and should be used only in case that it is focused on a limited number of events (simple search prior to the 'dist' aggregation)

Syntax

^{dist [column_name]}

Required Arguments

^column_name

Syntax: <character string>

Description: The name of a column header that its values should be listed

Optional Arguments

None

Description

Displays the distribution over time of all values under the specified column(s) as appear in the log(s)

Examples

Example 1:  

^{* in log.application | dist event} 

Returns a distribution over time of all values under the Event in the log Application

Example 2:  

^{* in log.application | dist event, type}

Returns a distribution over time of all values under the columns Event and Type in the log Application