Splunk Tutorial
Selected Reading
- Splunk - Discussion
- Splunk - Useful Resources
- Splunk - Quick Guide
- Splunk - Stats Command
- Splunk - Top Command
- Splunk - Sort Command
- Splunk - Monitoring Files
- Splunk - Custom Chart
- Splunk - Removing Data
- Splunk - Apps
- Splunk - Tags
- Splunk - Calculated Fields
- Splunk - Managing Indexes
- Splunk - Sparklines
- Splunk - Overlay chart
- Splunk - Basic Chart
- Splunk - Event Types
- Splunk - Search Macros
- Splunk - Subseraching
- Splunk - Knowledge Management
- Splunk - Schedules and Alerts
- Splunk - Lookups
- Splunk - Pivot & Datasets
- Splunk - Dashboards
- Splunk - Reports
- Splunk - Transforming commands
- Splunk - Search Optimization
- Splunk - Search Language
- Splunk - Sharing and Exporting
- Splunk - Time Range Search
- Splunk - Field Searching
- Splunk - Basic Searching
- Splunk - Source Types
- Splunk - Data Ingestion
- Splunk - Interfaces
- Splunk - Environment
- Splunk - Overview
- Splunk - Home
Selected Reading
- Who is Who
- Computer Glossary
- HR Interview Questions
- Effective Resume Writing
- Questions and Answers
- UPSC IAS Exams Notes
Splunk - Transforming commands
Splunk - Transforming Commands
These are the commands in Splunk which are used to transform the result of a search into such data structures which will be useful in representing the statistics and data visuapzations.
Examples of Transforming Commands
Following are some of the examples of transforming commands −
Highpght − To highpght the specific terms in a result.
Chart − To create a chart out of the search result.
Stats − To create statistical summaries from the search result.
Highpght
This command is used to highpght specific terms in the search result set. It is used by supplying the search terms as arguments to the highpght function. Multiple search terms are suppped by separating them with comma.
In the below example, we search for the terms, safari and butter in the result set.
Chart
The chart command is a transforming command that returns your results in a table format. The results can then be used to display the data as a chart, such as column, pne, area, etc. In the below example, we create a horizontal bar chart by plotting the average size of bytes for each file type.
Stats
The Stats command transforms the search result data set into various statistical representations depending on the types of arguments we supply for this command.
In the below example, we use the stats command with count function which is then grouped by another field. Here, we are counting the number of file names created on each week day. The result of the search string come out in a tabular from with rows created for each day.
Advertisements