SPLK-1002 · Question #259
SPLK-1002 Question #259: Real Exam Question with Answer & Explanation
The correct answer is B: index=web | stats sum (bytes) BY page server. The correct command to show the total bytes for each unique combination of page and server is index=web | stats sum (bytes) BY page server. In Splunk, the stats command is used to calculate aggregate statistics over the dataset, such as count, sum, avg, etc. When using the BY cla
Question
Which of these stats commands will show the total bytes for each unique combination of page and server?
Options
- Aindex=web | stats sum (bytes) BY page BY server
- Bindex=web | stats sum (bytes) BY page server
- Cindex=web | stats sum(bytes) BY page AND server
- Dindex=web | stats sum(bytes) BY values (page) values (server)
Explanation
The correct command to show the total bytes for each unique combination of page and server is index=web | stats sum (bytes) BY page server. In Splunk, the stats command is used to calculate aggregate statistics over the dataset, such as count, sum, avg, etc. When using the BY clause, it groups the results by the specified fields. The correct syntax does not include commas or the word 'AND' between the field names. Instead, it simply lists the field names separated by spaces within the BY clause.
Topics
Community Discussion
No community discussion yet for this question.