Splunk
SPLK-1001 · Question #28
SPLK-1001 Question #28: Real Exam Question with Answer & Explanation
The correct answer is B. Sourcetype=access_* |stats sum(categorylD) by host. See the full explanation below for the reasoning.
Question
Which of the following searches will show the number of categoryld used by each host?
Options
- ASourcetype=access_* |sum bytes by host
- BSourcetype=access_* |stats sum(categorylD) by host
- CSourcetype=access_* |sum(bytes) by host
- DSourcetype=access_* |stats sum by host
Community Discussion
No community discussion yet for this question.