CHAPTER 11
Analyzing a Specific Flight Over the Years
Using the analysis of a specific flight over the years as an example, we continue to explore Splunk commands. This time we focus on lookup tables, both static CSV based and using a database. It can be argued that field lookup tables are inherited from relational databases and their constant need to normalize data. As such, much of the data that we deal with on a daily basis is coded and those codes are explained in separate tables, which are called lookup tables. In Splunk you can create and upload lookup tables that can be later used in searches to expand the aforementioned codes.
Airline ...
Get Big Data Analytics Using Splunk: Deriving Operational Intelligence from Social Media, Machine Data, Existing Data Warehouses, and Other Real-Time Streaming Sources now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
