Splunk Search
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Joining Data

dgadjov
Explorer
‎03-20-2013 04:50 PM

I have two sets of data which have some similar columns.
Table one has column: A B C D E
and table two has column: B C D J K L ...

The first table is the main table and the second table contains some additional general information.

I want to append to table 1 the records in table two. So in this case records B C D from table two should be added.

The resulting table should look like A B+ C+ D+ E. The plus signs just indicates that these columns have been added to. A and E should remain the same.

Tags (1)
0 Karma
Reply

Ayn
Legend
‎03-21-2013 12:52 AM

Without more details it's hard to give you a clear answer, but you should check out the commands join and appendcols.

0 Karma
Reply

dgadjov
Explorer
‎03-21-2013 09:08 AM

I have tried join and appendcols is not what I want at all. I'm not sure how to give more information.
All I want to do is append to table one without creating new columns that exist in the second table.
ie.

Table 1 Table 2

A B C D A B C Z
1 1 1 1 4 2 2 2
2 1 1 1 5 2 2 2
3 1 1 1 6 2 2 2

Results Table

A B C D
1 1 1 1
2 1 1 1
3 1 1 1
4 2 2
5 2 2
6 2 2

0 Karma
Reply
Get Updates on the Splunk Community!

Automatic Discovery Part 1: What is Automatic Discovery in Splunk Observability Cloud ...

If you’ve ever deployed a new database cluster, spun up a caching layer, or added a load balancer, you know it ...

Real-Time Fraud Detection: How Splunk Dashboards Protect Financial Institutions

Financial fraud isn't slowing down. If anything, it's getting more sophisticated. Account takeovers, credit ...

Splunk + ThousandEyes: Correlate frontend, app, and network data to troubleshoot ...

 Are you tired of troubleshooting delays caused by siloed frontend, application, and network data? We've got a ...