EXPLORING WEB TRAFFIC

SPLUNK> Search & Reporting
 SPL: index=main sourcetype=web_traffic
 DTG: All Time
 
 * the "selected fields" section represent basic metadata about the log file itself.
 
 * The "interesting fields" contains fields that Splunk has automatically extracted 
   or manually added.
    - fields prefixed with # (e.g., #date_hour) are automatically generated by Splunk's
      time commands
       - the presence of user_agent, path, and client_ip fields confirms the successful
         parsing of the web log structure.
 * The "Event details & field extraction" section shows the parsed details of a single
   event with extracted fields such as user_agent, path, status, client_ip, etc

PreviousEXPLORING LOGS NextVISUALIZING LOGS TIMELINE

Last updated 2 days ago