You're reading from Data Analytics Using Splunk 9.x A practical guide to implementing Splunk's features for performing data analysis at scale

Product type Paperback

Published in Jan 2023

Publisher Packt

ISBN-13 9781803249414

Length 336 pages

Edition 1st Edition

Tools

Splunk

Concepts

Data Analysis

Author (1):

Dr. Nadine Shillingford

View More author details

Table of Contents (18) Chapters

Preface

1. Part 1: Getting Started with Splunk

2. Chapter 1: Introduction to Splunk and its Core Components FREE CHAPTER

3. Chapter 2: Setting Up the Splunk Environment

4. Chapter 3: Onboarding and Normalizing Data

5. Part 2: Visualizing Data with Splunk

6. Chapter 4: Introduction to SPL

7. Chapter 5: Reporting Commands, Lookups, and Macros

8. Chapter 6: Creating Tables and Charts Using SPL

9. Chapter 7: Creating Dynamic Dashboards

10. Part 3: Advanced Topics in Splunk

11. Chapter 8: Licensing, Indexing, and Buckets

12. Chapter 9: Clustering and Advanced Administration

13. Chapter 10: Data Models, Acceleration, and Other Ways to Improve Performance

14. Chapter 11: Multisite Splunk Deployments and Federated Search

15. Chapter 12: Container Management

16. Index

Why subscribe?

17. Other Books You May Enjoy

Enhancing logs with lookups

Lookups are very useful for enhancing search results. Lookups can be used to add extra clarifying information to search results. For example, we can use a lookup to convert HTTP status codes into user-readable strings. Given a username or ID, we can use a lookup containing additional information such as the user’s full name, manager, or department to add context to search results. The username or ID is piped from an earlier part of the search and used as a key to access the additional information in the lookup. In this section, we will explore the use of the inputlookup and lookup commands. The inputlookup command is a generating command. It is usually used with a lookup file that contains Comma-Separated Values (CSV). The Splunk Settings menu contains a link to all the lookups stored in Splunk. The following steps will guide you and show you the lookups available in the Splunk Addon for Microsoft Windows, which we installed in Chapter 2, Setting...

The rest of the chapter is locked

You're reading from Data Analytics Using Splunk 9.x A practical guide to implementing Splunk's features for performing data analysis at scale

Table of Contents (18) Chapters

Enhancing logs with lookups

Authors (1)

Personalised recommendations for you

You're reading from Data Analytics Using Splunk 9.x A practical guide to implementing Splunk's features for performing data analysis at scale

Table of Contents (18) Chapters

Enhancing logs with lookups

Unlock this book and the full library FREE for 7 days

Authors (1)

Personalised recommendations for you