All my ElasticSearch docs have StartTime and EndTime. I would like to build a histogram that has the number of documents for a given bucket of time, for example. 30 minutes, so all documents have StartTime <BucketEndTime and EndTime> BucketStartTime. How would I build such a search query? How to show results in Kibana?
This is not possible for Kibana 4.0.2 (current latest version). The reason here is because you want to aggregate based on the calculation across multiple fields (StartTime and EndTime), and this is not supported by Kibana right now.