최신Splunk Core Certified Power User - SPLK-1002무료샘플문제
문제1
Which of the following statements describes calculated fields?
Which of the following statements describes calculated fields?
정답: A
문제2
Which of the following searches show a valid use of a macro? (Choose all that apply.)
Which of the following searches show a valid use of a macro? (Choose all that apply.)
정답: A,B
설명: (KoreaDumps 회원만 볼 수 있음)
문제3
Which field will be used to populate the field if the productName and product:d fields have values for a given event?
| eval productINFO=coalesco(productName,productid)
Which field will be used to populate the field if the productName and product:d fields have values for a given event?
| eval productINFO=coalesco(productName,productid)
정답: D
설명: (KoreaDumps 회원만 볼 수 있음)
문제4
Consider the the following search run over a time range of last 7 days:
index=web sourcetype=access_conbined | timechart avg(bytes) by product_nane Which option is used to change the default time span so that results are grouped into 12 hour intervals?
Consider the the following search run over a time range of last 7 days:
index=web sourcetype=access_conbined | timechart avg(bytes) by product_nane Which option is used to change the default time span so that results are grouped into 12 hour intervals?
정답: C
설명: (KoreaDumps 회원만 볼 수 있음)
문제5
When should transaction be used?
When should transaction be used?
정답: C
문제6
For the following search, which field populates the x-axis?
index=security sourcetype=linux secure | timechart count by action
For the following search, which field populates the x-axis?
index=security sourcetype=linux secure | timechart count by action
정답: A
설명: (KoreaDumps 회원만 볼 수 있음)
문제7
Given the following eval statement:
... | eval field1 = if(isnotnull(field1),field1,0), field2 = if(isnull(field2), "NO-VALUE", field2) Which of the following is the equivalent using fillnull?
Given the following eval statement:
... | eval field1 = if(isnotnull(field1),field1,0), field2 = if(isnull(field2), "NO-VALUE", field2) Which of the following is the equivalent using fillnull?
정답: C
설명: (KoreaDumps 회원만 볼 수 있음)
문제8
How are event types different from saved reports?
How are event types different from saved reports?
정답: D
설명: (KoreaDumps 회원만 볼 수 있음)
문제9
Which of the following statements describe the search below? (select all that apply) Index=main I transaction clientip host maxspan=30s maxpause=5s
Which of the following statements describe the search below? (select all that apply) Index=main I transaction clientip host maxspan=30s maxpause=5s
정답: B,C,D
설명: (KoreaDumps 회원만 볼 수 있음)
문제10
Which of the following can be used with the eval command tostring function (select all that apply)
Which of the following can be used with the eval command tostring function (select all that apply)
정답: B,C,D
설명: (KoreaDumps 회원만 볼 수 있음)
문제11
which of the following are valid options with the chart command
which of the following are valid options with the chart command
정답: C,D
문제12
Consider the following search:
index=web sourcetype=access_corabined
The log shows several events that share the same jsesszonid value (SD462K101O2F267). View the events as a group.
From the following list, which search groups events by jSSESSIONID?
Consider the following search:
index=web sourcetype=access_corabined
The log shows several events that share the same jsesszonid value (SD462K101O2F267). View the events as a group.
From the following list, which search groups events by jSSESSIONID?
정답: A
설명: (KoreaDumps 회원만 볼 수 있음)
문제13
Which of the following options will define the first event in a transaction?
Which of the following options will define the first event in a transaction?
정답: C
설명: (KoreaDumps 회원만 볼 수 있음)
문제14
What is the relationship between data models and pivots?
What is the relationship between data models and pivots?
정답: C
설명: (KoreaDumps 회원만 볼 수 있음)
문제15
What are the two parts of a root event dataset?
What are the two parts of a root event dataset?
정답: B
설명: (KoreaDumps 회원만 볼 수 있음)
문제16
Which of the following searches would return a report of sales by product-name?
Which of the following searches would return a report of sales by product-name?
정답: D
설명: (KoreaDumps 회원만 볼 수 있음)