Posted by: Pdfprep
Post Date: November 4, 2020
Which search will return the 15 least common field values for the dest_ip field?
A . sourcetype=firewall | rare num=15 dest_ip
B . sourcetype=firewall | rare last=15 dest_ip
C . sourcetype=firewall | rare count=15 dest_ip
D . sourcetype=firewall | rare limit=15 dest_ip
Answer: C
Explanation:
Reference: https://answers.splunk.com/answers/41928/add-a-lookup-csv-colum-information-to-the-resultsof-a-inputlookup-search.html
Leave a Reply