Module 4 Advanced Visualisation Flashcards
what does the trendline command do?
it allows you to overlay a computed moving average on a chart
what are the trendline types?
sma=simple moving average
ema=exponential moving average
wma= weighted moving average
True or False?
a time period needs to be defined to compute the trend
True
what integer must the period be between?
2 and 10000
what do you use the iplocation command for
to lookup and add location information to an event
what information is brought back with the iplocation command?
city, country, region, latitude and longitude
is information available for all ip address ranges?
No
true or False
does it automatically define the default latitude and longitude fields required by geostats?
True
what is the geostats command used for?
it is used to compute statistical functions and render a cluster map
what Choropleth Maps does Splunk ship with?
geo_us_states, United States
geo_countries, countries of the world
what is the geom command used for?
it used for viewing ents in a chloropleth map
what formatting options do have for single value visualisations?
number, Marker, filler and Radial gauge
true or false:
you add a sparkline to a single value visualisation
True
it is a inline chart designed to show time based trends
True or False
Trenlines can’t be added to a single value visualisation
False
the trend shows the direction in which the values are moving
when adding totals in the chart UI what can’t you do?
- Can’t indicate which column to total (all column are totaled)
- can’t add labels
