[splunk] Using Fields

zyeon·2022년 8월 5일

splunk_study

목록 보기

2/7

Topic 1 – What are Fields?

▪ Understand fields and field auto-extraction

▪ Add fields to the Selected Fields list

▪ Explore and generate reports from the Fields window

Topic 2 – What is Field Discovery?

▪ Understand Field Discovery

▪ Explore search modes and their effect on search results

Topic 3 – Using Fields in Searches

▪ Use fields correctly in basic searches

▪ Use fields with operators

▪ Use the rename command

▪ Use the fields command to improve search performance

Topic 4 – Comparing Temporary versus Persistent Fields

▪ Differentiate between temporary and persistent fields

▪ Create temporary fields with the eval command

▪ Extract temporary fields with the erex and rex commands

Topic 5 – Enriching Data

▪ Understand how fields from lookups, calculated fields, field aliases, and field extractions enrich data

zyeon

splunk

이전 포스트

[splunk] Intro Splulnk

다음 포스트

[splunk] Using Fields

splunk_study

Topic 1 – What are Fields?

▪ Understand fields and field auto-extraction

▪ Explore the Fields sidebar

▪ Add fields to the Selected Fields list

▪ Explore and generate reports from the Fields window

Topic 2 – What is Field Discovery?

▪ Understand Field Discovery

▪ Explore search modes and their effect on search results

Topic 3 – Using Fields in Searches

▪ Use fields correctly in basic searches

▪ Use fields with operators

▪ Use the rename command

▪ Use the fields command to improve search performance

Topic 4 – Comparing Temporary versus Persistent Fields

▪ Differentiate between temporary and persistent fields

▪ Create temporary fields with the eval command

▪ Extract temporary fields with the erex and rex commands

Topic 5 – Enriching Data

▪ Understand how fields from lookups, calculated fields, field aliases, and field extractions enrich data

[splunk] Intro Splulnk

[splunk] Scheduling Reports & Alerts

0개의 댓글