regex - Splunk: how to extract fields using regular expressions? like rex in splunk search -
i want extract primary , standyby db names below string found in splunk search.
jul 20 14:43:31 xxxxxxxx guptaa guptaa - primary database guptac - (*) physical standby database guptab - physical standby database.
jul 20 14:43:31 xxxxxxxx kumara kumara - primary database kumarc - (*) physical standby database kumard - physical standby database - physical standby database kumare - physical standby database
primary db : guptaa secondarydbs : guptac, guptab
i want show table below details.
primary db standybydb
guptaa guptac, guptab kumara kumarc, kumard, kumare
any suggestions using splunk search?
thank you!
Comments
Post a Comment