Processing and Analyzing the Data
In this chapter you will learn how to process and analyze the data using Splunk’s Search Processing Language (SPL) . We will continue with the data-loading work that we did in Chapter 2; this will help you to get a good understanding of the combined access log format and the information that the log entries provide. You will then learn how to process the data of MyGizmoStore.com using SPL’s reporting, sorting, filtering, modifying, and grouping commands.
Getting to Know Combined Access Log Data
One of the points that we stress in this book is the need to understand the data set that you want to process ...