Flowmill
HomeBlogFree Trial
Search…
Welcome to Flowmill
Quick Start
Contact Us
About Flowmill
Why Network Observability
How Flowmill Works
What Flowmill Collects
Use Cases
Detecting Network Reliability and Performance Problems
Managing Network Transfer Costs
Analyzing Application Behavior
Getting Started
Prerequisites
Installing Agents
Managing Users
Installing the SDK
Authenticating API Requests
Using Flowmill
Service Explorer
Dashboards
Cost Dashboard
Monitors and Alerts
Product Walkthrough
API Reference
Alerts
Dashboards
Integrations
Monitors
System Overview
Tenants
Timeseries
Topology
Integrations
Kubernetes
PagerDuty
Slack
Nomad
Appendix
Agent Configuration Parameters
Troubleshooting and advanced configuration
Flowmill Youtube Channel
Flow Logs
About Flowmill Flow Logs
Powered By GitBook
Timeseries
Use the Timeseries service to query metrics directly from the Flowmill Timeseries database. A Timeseries query specify:
    A timerange
    A metric, such as TCP Packets Dropped or TCP Bytes Transferred
Timeseries may optionally specify filters and groups.

Specifying a Time Duration and Number of Samples

The Flowmill service is built around a timeseries database capable of doing flexible aggregations over time. Queries can be configured to cover both a desirable range of time as well as requesting a given number of data points.

V1 - Start, End, Step Method

We have deprecated version 1 of our Timeseries APIs. Please use version 2.

V2 - End, Duration, Number of Samples Method

In version 2 of the Timeseries APIs, time ranges are specified using an exclusive end timestamp, the duration of the time range requested and the number of values to return.

Specifying the Metric

Requests to the Timeseries API must specify both the metric and timerange to query.
Metrics are currently gathered for 4 procotols:
    TCP
    UDP
    HTTP
    DNS
To get the full list of metrics to query, please contact Flowmill.

A Sample Request

The following example shows how to query tcp bytes transferred for the last hour, aggregated to a single datapoint:
1
import datetime
2
import flowmill
3
4
end = datetime.datetime.utcnow().strftime('%Y-%m-%dT%H:%M:%S.%f')[:-3]+'Z'
5
duration = '1h'
6
num_steps = '1'
7
8
request = flowmill.GrpcTimeSeriesRequestV2(end=end,
9
duration=duration,
10
num_steps=num_steps,
11
metric='bytes',
12
)
Copied!

Limiting the Total Number of Timeseries

Use the top_k parameter to limit the number of timeseries returned.
The following example shows how to query for the 100 highest-traffic connections between services over the the past hour:
1
import datetime
2
import flowmill
3
4
5
end = datetime.datetime.utcnow().strftime('%Y-%m-%dT%H:%M:%S.%f')[:-3]+'Z'
6
duration = '1h' num_steps = '1'
7
8
9
request = flowmill.GrpcTimeSeriesRequestV2(end=end,
10
duration=duration,
11
num_steps=num_steps,
12
top_k=100,
13
metric='bytes',
14
)
Copied!

Filters

Use filters to limit which timeseries are used to generate the result. Requests may define distinct filters for source and destination or use the same filter if desired. ​ The following example shows how to filter for bytes transferred by a single service in a single availability zone:
1
import datetime
2
import flowmill
3
4
end = datetime.datetime.utcnow().strftime('%Y-%m-%dT%H:%M:%S.%f')[:-3]+'Z'
5
duration = '1h'
6
num_steps = '1'
7
8
source_filters = [flowmill.GrpcFilter('role', 'IN', [role]),
9
flowmill.GrpcFilter('az', 'IN', [zone])]
10
11
request = flowmill.GrpcTimeSeriesRequestV2(end=end,
12
duration=duration,
13
num_steps=num_steps,
14
metric='bytes',
15
source_filters=source_filters,
16
)
Copied!

Groupings

Use groupings to rollup metrics from individual entities into an aggregation of these entities, such as role, availability zone or environment.
The following example shows how to aggregate traffic from a single source service, but breakdown results for the destination by service, zone and ip address:
1
import datetime
2
import flowmill
3
4
‌end = datetime.datetime.utcnow().strftime('%Y-%m-%dT%H:%M:%S.%f')[:-3]+'Z'
5
6
source_grouping = ['role'] destination_grouping = ['role', 'az', 'ip']
7
8
request = flowmill.GrpcTimeSeriesRequestV2(end=end,
9
duration=duration,
10
num_steps=num_steps,
11
metric='bytes',
12
source_grouping=source_grouping,
13
destination_grouping=destination_grouping,
14
)
Copied!

Matching Source and Destination

Use label_equality to query for things like "cross zone traffic" or "same zone traffic" by performing comparisions on a subset of the labels. ​ The following example shows how to return timeseries where source and destination are in different availability zones:
1
import datetime
2
import flowmill
3
4
end = datetime.datetime.utcnow().strftime('%Y-%m-%dT%H:%M:%S.%f')[:-3]+'Z'
5
duration = '1h'
6
num_steps = 1
7
8
label_equality = [flowmill.GrpcLabelEqualityPair('az', False)]
9
10
request = flowmill.GrpcTimeSeriesRequestV2(end=end,
11
duration=duration,
12
num_steps=num_steps,
13
metric='bytes',
14
label_equality=label_equality
15
)
Copied!
API Reference - Previous
Tenants
Next - API Reference
Topology
Last modified 1yr ago
Copy link
Contents
Specifying a Time Duration and Number of Samples
V1 - Start, End, Step Method
V2 - End, Duration, Number of Samples Method
Specifying the Metric
A Sample Request
Limiting the Total Number of Timeseries
Filters
Groupings
Matching Source and Destination