Hi,
I'm trying to create an ALert mechanism that will be triggered if certain condition is "statistically significant".
Let's say
n = Number of Errors/5 min
p = Probability of n<=5
a = The critical alpha level = 5%
Null Hypothesis:
H0: p <= 5%
H1: p > 5%
Let's say I have a set of data with the # of Errors per5 min, for the last 7 days. e.g.
3:36 -- 3
3:41 -- 0
3:46 -- 0
.
.
.
.
4:00 -- 1
4:05 -- 4
Is there a way for me to configure an alert in Splunk, which will check every 5 mins, if the number of Errors occurred in the last 5 mins is statistically significant, in order to trigger the alert?
Thu, 08 Mar 2012 00:56:39 GMT daskuntal