Course Code:
bspsptme
Duration:
3 hours
Prerequisites:
- Splunk Basics
Overview:
.
Course Outline:
Using Time to Search
- The_time field and timestamps
- Event Timelines
- 'Earliest' and 'Latest' time modifiers
- Bin commands with the_time field
Formatting Time
- Date and time eval functions and formatting time
Time Commands
- Timechart command
- Timewrap command
Using Time Zones
- Time and time zones in data
- Your server time zone
- How to use strftime to correct timezones in results