Here’s your chance to get hands-on with Splunk for the first time! Bring your modern Mac, Windows, or Linux laptop and we’ll go through a simple install of Splunk. Then, we’ll load some sample data, and see Splunk in action – we’ll cover searching, pivot, reporting, alerting, and dashboard creation. At the end of this session you’ll have a hands-on understanding of the pieces that make up the Splunk Platform, how it works, and how it fits in the landscape of Big Data. You’ll experience practical examples that differentiate Splunk while demonstrating how to gain quick time to value.

1. Copyright © 2016 Splunk Inc.
Mike Nobles
Senior Sales Engineer
Getting Started with
Splunk Enterprise
http://www.splunk.com/download
http://docs.splunk.com/images/Tutorial/tutorialdata.zip

2. Legal Notices
During the course of this presentation, we may make forward-looking statements regarding future
events or the expected performance of the company. We caution you that such statements reflect our
current expectations and estimates based on factors currently known to us and that actual events or
results could differ materially. For important factors that may cause actual results to differ from those
contained in our forward-looking statements, please review our filings with the SEC. The forward-
looking statements made in this presentation are being made as of the time and date of its live
presentation. If reviewed after its live presentation, this presentation may not contain current or
accurate information. We do not assume any obligation to update any forward-looking statements
we may make. In addition, any information about our roadmap outlines our general product direction
and is subject to change at any time without notice. It is for informational purposes only and shall
not be incorporated into any contract or other commitment. Splunk undertakes no obligation either
to develop the features or functionality described or to include any such feature or functionality in a
future release.
2

3. 3
Making machine data accessible,
usable and valuable to everyone.
3

4. Our Plan of Action
4
1.Overview of Splunk
2.What differentiates Splunk?
3.Components that make up Splunk
4.Hands-on Overview
5.Demo (optionally “follow along”)

5. The Accelerating Pace of Data
Volume | Velocity | Variety | Variability
GPS,
RFID,
Hypervisor,
Web Servers,
Email, Messaging,
Clickstreams, Mobile,
Telephony, IVR, Databases,
Sensors, Telematics, Storage,
Servers, Security Devices, Desktops
Machine data is the fastest growing, most
complex, most valuable area of big data
5

6. Industry Leading Platform For Machine Data
Machine Data: Any Location, Type, Volume
Online
Services Web
Services
Servers
Security GPS
Location
Storage
Desktops
Networks
Packaged
Applications
Custom
ApplicationsMessaging
Telecoms
Online
Shopping
Cart
Web
Clickstreams
Databases
Energy
Meters
Call Detail
Records
Smartphones
and Devices
RFID
On-
Premises
Private
Cloud
Public
Cloud
Platform Support (Apps / API / SDKs)
Enterprise Scalability
Universal Indexing
Answer Any Question
Developer
Platform
Report
and
analyze
Custom
dashboards
Monitor
and alert
Ad hoc
search
Universal
Machine Data
Platform
No backend database
No custom connectors
No need to filter data
Schema-on-the-fly
Quick time to value
Agile statistics and reporting
Real-time architecture

7. perf
shell
API
Mounted File Systems
hostnamemount
syslog
TCP/UDP
Event Logs
Performance
Active
Directory
syslog hosts
and network devices
Unix, Linux and Windows hosts
Local File Monitoring
Splunk Forwarder
virtual
host
Windows
Scripted or Modular Inputs
shell scripts
API subscriptions
Mainframes*nix
Wire Data
Splunk App for Stream
Efficient Time Based Indexing
Splunk Differentiators

8. Splunk Differentiators
8
• Role Based Access Control
• Define roles and assign users to them.
• Integrate with LDAP or SSO.
• Centralized Access
• Allows multiple users across the organization to securely leverage same
instance with multiple data types.
• Align data access to policies in the organization
• Secure Data Transmission
• Universal Forwarders provides easy, reliable, secure data collection
from remote sources.
• SSL security, data compression, configurable throttling and buffering.

9. Splunk Components
9
Data Collection Layer - Universal Forwarders, syslog, API, TCP, Scripts, Wire, etc.
Data Indexing Layer – Indexer(s).
Data Presentation Layer– Search Head(s)
Universal Forwarder

10. 1.
2.
3.
4.
How to Get Started (Hands-on prep.)
Download
Install
Forward Data
Search
Databases
Networks
Servers
Virtual
Machines
Smart
phones
and
Devices
Custom
Applications
Security
WebServer
Sensors
Four steps:
10

11. Demo – “Follow-along” Flow
11
1. Install and Start Splunk
2. Ingest Data (add tutorial data)
3. Search Basics
• Search Bar
• Time Picker
• Interesting Fields (schema on the fly)
4. Custom Event Types
5. Visualization (reporting/dashboards) and Statistics
6. Alerts
7. Simple Correlation Example* / Enrich with Lookups
8. Splunk Applications (for shirt, must calculate VIP customer $$s)

12. Demo/
Hands-on
12

13. Supplemental Information
13
Get the following at splunk.does-it.net
Download
• www.splunk.com/download
Search Tutorial:
• docs.splunk.com/Documentation/Splunk/latest/SearchTutorial
Tutorial Data:
• docs.splunk.com/images/Tutorial/tutorialdata.zip

14. Education Resources
14
Splunk Education
• www.splunk.com/education
Using Splunk, Searching and Reporting, Developing Apps,
Administering Splunk, and more!
Books
• Implementing Splunk: Big Data Essentials for Operational Intelligence
• Splunk Essentials
• Exploring Splunk
• Splunk Operational Intelligence Cookbook

15. Things to Remember
15
1. Splunk is Free – Download and get started today
2. Quick Time to Value
3. Data Gold Mines – what informational fortune awaits?!
4. Leverage the Splunk Community
• splunkbase.splunk.com
• answers.splunk.com
• blogs.splunk.com
5. Happy Splunking!!

16. Questions?

17. Thank You