7/30/2023 0 Comments Splunk join 2 searches![]() 1st Dataset: with four fields – movie_id, language, movie_name, country | table id,director | rename id as movie_id] Explanation: In the above figure, we have added two result-sets using join command and we took movie_id as our matching field. it will be the search query of dataset 2 Showcase: Basically, with join command, there are two joins is possible 1) Inner 2) Left or outer Now what are these two things take a look into the below figure So let’s take a look Let’s take an example: we have two different datasets. It is the common field that is present in both of the data-set. Syntax: | join - It will be the search query of your dataset 1 - There are many join-options like type, overwrite, max etc we will discuss only about type in this blog. Usage Of Splunk Commands : Join It is a very important command of Splunk, which is basically used for combining the result of sub search with the main search and importantly one or more fields should be common in both the result-sets. Civilization and its Discontents (Sigmund Freud).Forecasting, Time Series, and Regression (Richard T.Educational Research: Competencies for Analysis and Applications (Gay L.Brunner and Suddarth's Textbook of Medical-Surgical Nursing (Janice L.Bursten Catherine Murphy Patrick Woodward) Chemistry: The Central Science (Theodore E.The Methodology of the Social Sciences (Max Weber). ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |