You're reading from Data Analytics Using Splunk 9.x A practical guide to implementing Splunk's features for performing data analysis at scale

Product type Paperback

Published in Jan 2023

Publisher Packt

ISBN-13 9781803249414

Length 336 pages

Edition 1st Edition

Tools

Splunk

Concepts

Data Analysis

Author (1):

Dr. Nadine Shillingford

View More author details

Table of Contents (18) Chapters

Preface

1. Part 1: Getting Started with Splunk

2. Chapter 1: Introduction to Splunk and its Core Components FREE CHAPTER

3. Chapter 2: Setting Up the Splunk Environment

4. Chapter 3: Onboarding and Normalizing Data

5. Part 2: Visualizing Data with Splunk

6. Chapter 4: Introduction to SPL

7. Chapter 5: Reporting Commands, Lookups, and Macros

8. Chapter 6: Creating Tables and Charts Using SPL

9. Chapter 7: Creating Dynamic Dashboards

10. Part 3: Advanced Topics in Splunk

11. Chapter 8: Licensing, Indexing, and Buckets

12. Chapter 9: Clustering and Advanced Administration

13. Chapter 10: Data Models, Acceleration, and Other Ways to Improve Performance

14. Chapter 11: Multisite Splunk Deployments and Federated Search

15. Chapter 12: Container Management

16. Index

Why subscribe?

17. Other Books You May Enjoy

Summary

In this chapter, we covered six categories of Splunk search commands. We learned that the streaming commands such as the implicit search command and rename are executed on the results of a search. We found out that generating commands such as makeresults, tstats, and inputlookup generate data during a search. For example, the tstats command generates data from indexed fields stored in tsidx files. Transforming commands such as table, stats, and chart change the output of a search. We looked at how we can alter the functions and syntax of some of the commands to change the way the data is displayed. We also learned that orchestrating commands such as lookup supplement fields into the search results. Dataset processing commands such as dedup, join, and sort require the complete search results before they can be executed. The join command combines search results with the results of a subsearch. We also learned how we can enhance Splunk events with lookups by creating lookup tables...

The rest of the chapter is locked

You're reading from Data Analytics Using Splunk 9.x A practical guide to implementing Splunk's features for performing data analysis at scale

Table of Contents (18) Chapters

Summary

Authors (1)

Personalised recommendations for you

You're reading from Data Analytics Using Splunk 9.x A practical guide to implementing Splunk's features for performing data analysis at scale

Table of Contents (18) Chapters

Summary

Unlock this book and the full library FREE for 7 days

Authors (1)

Personalised recommendations for you