Anonymity94
2020-06-29
DSL

# Splunk的SPL

WARNING

未完成

# 管道符|

| 表示上一个命令的输出作为下一个命令的输入

sourcetype=access _ combined error | top 5 uri
1

# Common Search Commands

Command Description
chart/ timechart Returns results in a tabular output for (time-series) charting.
dedup Removes subsequent results that match a specified criterion.
eval Calculates an expression.See COMMON EVAL
fields FUNCTIONS.Removes fields from search results.

# 参考