Kibana Metric and Bucket Aggregations
A list of the supported metric and bucket aggregations for use in visualizations
This page lists the supported metric and bucket aggregations that can be used when creating aggregations for visualizations in Kibana.
Kibana Version
The latest release includes Kibana version 7.10.
Supported Metric Aggregations
ChaosSearch Kibana users can build visualizations and dashboards that summarize data using the following metric aggregations:
Metric Aggregation | Supported | Description |
|---|---|---|
Average | Yes | This aggregation returns the average of a numeric field. Select a field from the drop-down list. |
Count | Yes | The count aggregation returns a raw count of the elements in the selected view. |
Max | Yes | The max aggregation returns the maximum value of a numeric field. Select a field from the drop-down list. |
Min | Yes | The min aggregation returns the minimum value of a numeric field. Select a field from the drop-down list. |
Sum | Yes | The sum aggregation returns the total sum of a numeric field. Select a field from the drop-down list. |
Unique Count | Yes | The unique count (cardinality) aggregation returns the number of unique values in a field. Select a field from the drop-down list. |
Supported Bucket Aggregations
ChaosSearch Kibana users can build visualizations and dashboards that summarize data using the following bucket aggregations. Note that different bucket types are supported for each visualization type. After you select the visualization type, the available bucket aggregations are displayed in the Aggregation menu.
Aggregation | Supported | Description |
|---|---|---|
Date Histogram | Yes | A date histogram is built from a numeric field and organized by date. You can specify a time frame for the intervals in seconds, minutes, hours, days, weeks, months, or years. You can also specify a custom interval frame by selecting Custom as the interval and specifying a number and a time unit in the text field. Custom interval time units are s for seconds, m for minutes, h for hours, d for days, w for weeks, and y for years. Different units support different levels of precision, down to one second. Intervals are labeled at the start of the interval, using the date-key returned by Elasticsearch. For example, the tooltip for a monthly interval will show the first day of the month. |
Date Range | Yes | A date range aggregation reports values that are within a range of dates that you specify. You can specify the ranges for the dates using date math expressions. Click Add Range to add a set of range endpoints. Click the red (/) symbol to remove a range. |
Geohash | Yes | Used with map visualizations, the geohash aggregation displays points based on the geohash coordinates. |
Histogram | Yes | A standard histogram is built from a numeric field. Specify an integer interval for this field. Select the Show empty buckets checkbox to include empty intervals in the histogram. |
IPv4 Range | Yes | The IPv4 range aggregation enables you to specify ranges of IPv4 addresses. Click Add Range to add a set of range endpoints. Click the red (/) symbol to remove a range. |
Terms | Yes | A terms aggregation enables you to specify the top or bottom n elements of a given field to display, ordered by count or a custom metric. |
Sub-buckets | Yes | After you define a bucket type aggregation, you can define sub-buckets to refine the visualization. Click + Add sub-buckets to define a sub-bucket, then choose Split Rows or Split Table, then select an aggregation from the list of types. |
Updated 2 months ago