Ucz się szybciej
Testy Fiszki Notatki
Zaloguj  

Fiszki

Splunk

Test w formie fiszek
Ilość pytań: 84 Rozwiązywany: 2094 razy
Portal for Splunk apps can be accessed through www.splunkbase.com
False
True
True
Splunk shows data in __________________.
Reverse chronological order.
Chronological order.
Alphanumeric order.
ASCII Character order.
Reverse chronological order.
What result will you get with following search index=test sourcetype="The_Questionnaire_P*" ?
the_questionnaire Pedia
the_questionnaire_pedia
the_questionnaire _pedia
the_questionnaire pedia
the_questionnaire_pedia
Forward Option gather and forward data to indexers over a receiving port from remote machines.
True
False
True
You can on-board data to Splunk using following means (Choose four.):
inputs.conf
indexes.conf
savedsearches.conf
Splunk Web
Props
Splunk apps and add-ons
CLI
inputs.conf
Splunk Web
Splunk apps and add-ons
CLI
Data sources being opened and read applies to:
Indexing Phase
License Metering
Input Phase
Parsing Phase
None of the above
Input Phase
Select the correct option that applies to Index time processing (Choose three.).
Parsing
Searching
Input
Indexing
Settings
Parsing
Input
Indexing
Parsing of data can happen both in HF and UF.
Yes
No
No
Upload option creates inputs.conf
Yes
No
No
Splunk index time process can be broken down into __________ phases.
4
1
2
3
3
In monitor option you can select the following options in GUI.
Only TCP/UDP
Only Scripts
Filed & Directories, HTTP Event Collector (HEC), TCP/UDP and Scripts
Only HTTP Event Collector (HEC) and TCP/UDP
None of the above
Filed & Directories, HTTP Event Collector (HEC), TCP/UDP and Scripts
Which of the statements are correct about HF? (Choose three.)
Parsing
Forwarding
Masking
Searching
Parsing
Forwarding
Masking
Where does Licensing meter happen?
Indexer
Input
Heavy Forwarder
Parsing
Indexer
Matching search terms are highlighted.
Yes
No
Yes
The default host name used in Inputs general settings can not be changed.
True
False
False
You are able to create new Index in Data Input settings.
No
Yes
Yes
Splunk Parses data into individual events, extracts time, and assigns metadata.
True
False
True
Which symbol is used to snap the time?
@
*
#
&
@
There are three different search modes in Splunk (Choose three.):
Verbose
Fast
Smart
Automatic
Verbose
Fast
Smart
Keywords are highlighted when you mouse over search results and you can click this search result to (Choose three.):
None of the above.
Add the item to search.
Open new search.
Exclude the item from search.
Add the item to search.
Open new search.
Exclude the item from search.
You can view the search result in following format (Choose three.):
Pie Chart
Raw
Table
List
Raw
Table
List
Data summary button just below the search bar gives you the following (Choose three.):
Sourcetypes
Indexes
Sources
Hosts
Sourcetypes
Sources
Hosts
What options do you get after selecting timeline? (Choose four.)
Zoom Out
Delete
Zoom to selection
Format Timeline
Deselect
Zoom Out
Zoom to selection
Format Timeline
Deselect
Which time range picker configuration would return real-time events for the past 30 seconds?
Real-time - Earliest: 30-seconds ago, Latest: Now
Preset - Relative: 30-seconds ago
Advanced - Earliest: 30-seconds ago, Latest: Now
Relative - Earliest: 30-seconds ago, Latest: Now
Real-time - Earliest: 30-seconds ago, Latest: Now
Początek Pokaż poprzednie pytania

Powiązane tematy

Inne tryby

Nauka Test Powtórzenie