Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Getting Started with Splunk Enterprise

691 views

Published on

Here’s your chance to get hands-on with Splunk for the first time! Bring your modern Mac, Windows, or Linux laptop and we’ll go through a simple install of Splunk. Then, we’ll load some sample data, and see Splunk in action – we’ll cover searching, pivot, reporting, alerting, and dashboard creation. At the end of this session you’ll have a hands-on understanding of the pieces that make up the Splunk Platform, how it works, and how it fits in the landscape of Big Data. You’ll experience practical examples that differentiate Splunk while demonstrating how to gain quick time to value.

Published in: Technology
  • Be the first to comment

Getting Started with Splunk Enterprise

  1. 1. Copyright © 2016 Splunk Inc. Getting Started with Splunk Enterprise
  2. 2. 2 Set up: Before We Can Play Please Download the Following Download Splunk Enterprise https://www.splunk.com/download Dowload the Tutorial Data http://splk.it/2ey34P8 Dowload the lookup file http://splk.it/2fCgpXw Download the Search Tutorial http://splk.it/2ePSYKB
  3. 3. 3 Disclaimer During the course of this presentation, we may make forward looking statements regarding future events or the expected performance of the company. We caution you that such statements reflect our current expectations and estimates based on factors currently known to us and that actual events or results could differ materially. For important factors that may cause actual results to differ from those contained in our forward-looking statements, please review our filings with the SEC. The forward-looking statements made in the this presentation are being made as of the time and date of its live presentation. If reviewed after its live presentation, this presentation may not contain current or accurate information. We do not assume any obligation to update any forward looking statements we may make. In addition, any information about our roadmap outlines our general product direction and is subject to change at any time without notice. It is for informational purposes only and shall not, be incorporated into any contract or other commitment. Splunk undertakes no obligation either to develop the features or functionality described or to include any such feature or functionality in a future release.
  4. 4. 4 •Splunk Overview •Splunk Hands-on
  5. 5. Copyright © 2016 Splunk Inc. Splunk Overview
  6. 6. 6 Making machine data accessible, usable and valuable to everyone.
  7. 7. 7 Industry Leading Platform For Machine Data Machine Data: Any Location, Type, Volume Online Services Web Services Servers Security GPS Location Storage Desktops Networks Packaged Applications Custom ApplicationsMessaging Telecoms Online Shopping Cart Web Clickstreams Databases Energy Meters Call Detail Records Smartphones and Devices RFID On- Premises Private Cloud Public Cloud Platform Support (Apps / API / SDKs) Enterprise Scalability Universal Indexing Answer Any Question Developer Platform Report and analyze Custom dashboards Monitor and alert Ad hoc search
  8. 8. 8 Machine Data Contains Critical Insights Order ID Customer’s Tweet Time Waiting On Hold Product ID Company’s Twitter ID Order ID Customer ID Twitter ID Customer ID Customer ID Sources Order Processing Twitter Care IVR Middleware Error
  9. 9. 9 Turning Machine Data Into Business Value Index Untapped Data: Any Source, Type, Volume Online Services Web Services Servers Security GPS Location Storage Desktops Networks Packaged Applications Custom ApplicationsMessaging Telecoms Online Shopping Cart Web Clickstreams Databases Energy Meters Call Detail Records Smartphones and Devices RFID On- Premises Private Cloud Public Cloud Ask Any Question Application Delivery Security, Compliance and Fraud IT Operations Business Analytics Industrial Data and the Internet of Things
  10. 10. 10 Industry Leading Platform for Machine Data Index Untapped Data: Any Source, Type, Volume Online Services Web Services Servers Security GPS Location Storage Desktops Networks Packaged Applications Custom ApplicationsMessaging Telecoms Online Shopping Cart Web Clickstreams Databases Energy Meters Call Detail Records Smartphones and Devices RFID On- Premises Private Cloud Public Cloud Ask Any Question Application Delivery Security, Compliance and Fraud IT Operations Business Analytics Industrial Data and the Internet of Things Any amount, any location, any source Schema- on-the-fly Universal indexing No back-end RDBMS No need to filter data
  11. 11. Disruptive Approach to Unstructured Data Structured RDBMS SQL Search Schema at Write Schema at Read Traditional Splunk ETL Universal Indexing Volume Velocity Variety Unstructured
  12. 12. 12 Splunk & The Enterprise Data Fabric Forwarder Windows/*NIX HTTP/s 0101010 0010101 1010010 Wire DataSyslog TCP/UDP ……. ……. ……. Indexing Tier Search Head Cluster NoSQL RDBMS Splunk Archiving Modular
  13. 13. Copyright © 2016 Splunk Inc. Historical Data Real-time Data Statistical Models DB, Hadoop/S3/NoSQL, Splunk Machine Learning T – a few days T + a few days Why is this so challenging using traditional methods? • DATA IS STILL IN MOTION, still in a BUSINESS PROCESS. • Enrich real-time MACHINE DATA with structured HISTORICAL DATA • Make decisions IN REAL TIME using ALL THE DATA • Combine LEADING and LAGGING INDICATORS (KPIs) Splunk Security Operations Center Network Operations Center Business Operations Center
  14. 14. 15 Platform for Operational Intelligence Rich Ecosystem of Apps & Add-Ons Splunk Premium Solutions Mainframe Data Relational Databases MobileForwarders Syslog/TCP IoT Devices Network Wire Data Hadoop The Splunk Portfolio
  15. 15. 16 Analysts Business Users Analytics Ecosystem IT Users ODBC SDK API DB Connect Look-Ups Ad Hoc Search Monitor and Alert Reports / Analyze Custom Dashboards GPS / Cellular Devices Networks Hadoop Servers Applications Online Shopping Carts Analysts Business Users Structured Data Sources CRM ERP HR Billing Product Finance Data Warehouse Clickstreams
  16. 16. 17 Splunk Value Proposition Developer Faster Development No Upfront ETL No schema required Automatic field extraction Extensible and open platform for integration FAST TIME TO VALUE SELF-SERVICE ANALYTICS Data Scientist Faster data preparation time Built-in Machine Learning End-User Self-service analytics No programming expertise required Built-in querying and visualization Fast Time to Value Business Lower TCO Any Data Source, Anywhere No data duplication
  17. 17. dev.splunk.com 40,000+ Q & A – answers.splunk.com 1,200+ apps www.splunkbase.com 18 Thriving Splunk Community usergroups.splunk.com
  18. 18. Copyright © 2016 Splunk Inc. Let’s Play!
  19. 19. 20 Set up: Before We Can Play Please Download the Following Download Splunk Enterprise https://www.splunk.com/download Dowload the Tutorial Data http://splk.it/2ey34P8 Dowload the lookup file http://splk.it/2fCgpXw Download the Search Tutorial http://splk.it/2ePSYKB
  20. 20. 21 Reference Splunk Education • http://www.splunk.com/education Books • Exploring Splunk • Splunk Operational Intelligence Cookbook • Implementing Splunk • Big Data Analytics Using Splunk
  21. 21. 22
  22. 22. Copyright © 2016 Splunk Inc. Power of Splunk Search Processing Language (SPL™) Brian Greppe Senior SE, Splunk
  23. 23. Copyright © 2016 Splunk Inc. Keep Calm and Splunk the World

×