I need to create a dashboard in that I need to count Number of logs by date and number of errors by date
Here you go
your base search | bucket span=1d _time | stats count as total_logs count(eval(log_level="ERROR")) as total_errors by _time
Here you go
your base search | bucket span=1d _time | stats count as total_logs count(eval(log_level="ERROR")) as total_errors by _time
If you already have to the search query, you can run them and can save the result as dashboard panel. If you don't have a query, you'd have to share more details on your data, e.g. sample logs, base search and criteria on what is considered error. Generally, if you've a log_level field which has values like INFO/DEBUG/WARN/ERROR, you can do something like this:
your base search | stats count as total_logs count(eval(log_level="ERROR")) as total_errors
I want these count by date can you modify it by date please
Thanks