Splunk Tutorial
Splunk is a software used to search and analyze machine
data. This machine data can come from web applications,
sensors, devices or any data created by user. It serves the
needs of IT infrastructure by analyzing the logs generated in
various processes but it can also analyze any structured or
semi-structured data with proper data modelling. It has built-
in features to recognize the data types, field separators and
optimize the search processes. It also provides data
visualization on the search results.
This tutorial targets IT professionals, students, and IT
infrastructure management professionals who want a solid
grasp of essential Splunk concepts. After completing this
tutorial, you will achieve intermediate expertise in Splunk,
and easily build on your knowledge to solve more
challenging problems.
The reader should be familiar with querying language like
SQL. General knowledge in typical operations in using
computer applications like storing and retrieving data and
reading the logs generated by computer programs will be an
highly useful.
, -------------------------------------------------
TAB W. KEITH
Copyright © 2021 by Su TP. All Right Reserved.
, TABLE OF CONTENTS
1. Splunk - Overview.....................................................4
2. Splunk - Environment...............................................8
3. Splunk - Interface....................................................17
4. Splunk - Data Ingestion...........................................22
5. Splunk - Source Types............................................29
6. Splunk - Basic Search..............................................34
7. Splunk - Field Searching.........................................39
8. Splunk - Time Range Search...................................45
9. Splunk - Sharing Exporting.....................................51
10. Splunk - Search Language.......................................56
, Splunk - Overview
Splunk is a software which processes and brings out insight
from machine data and other forms of big data. This
machine data is generated by CPU running a webserver,
IOT devices, logs from mobile apps, etc. It is not necessary
to provide this data to the end users and does not have any
business meaning. However, they are extremely important to
understand, monitor and optimize the performance of the
machines.
Splunk can read this unstructured, semi-structured or rarely
structured data. After reading the data, it allows to search,
tag, create reports and dashboards on these data. With the
advent of big data, Splunk is now able to ingest big data
from various sources, which may or may not be machine
data and run analytics on big data.
So, from a simple tool for log analysis, Splunk has come a
long way to become a general analytical tool for
unstructured machine data and various forms of big data.
PRODUCT CATEGORIES
Splunk is a software used to search and analyze machine
data. This machine data can come from web applications,
sensors, devices or any data created by user. It serves the
needs of IT infrastructure by analyzing the logs generated in
various processes but it can also analyze any structured or
semi-structured data with proper data modelling. It has built-
in features to recognize the data types, field separators and
optimize the search processes. It also provides data
visualization on the search results.
This tutorial targets IT professionals, students, and IT
infrastructure management professionals who want a solid
grasp of essential Splunk concepts. After completing this
tutorial, you will achieve intermediate expertise in Splunk,
and easily build on your knowledge to solve more
challenging problems.
The reader should be familiar with querying language like
SQL. General knowledge in typical operations in using
computer applications like storing and retrieving data and
reading the logs generated by computer programs will be an
highly useful.
, -------------------------------------------------
TAB W. KEITH
Copyright © 2021 by Su TP. All Right Reserved.
, TABLE OF CONTENTS
1. Splunk - Overview.....................................................4
2. Splunk - Environment...............................................8
3. Splunk - Interface....................................................17
4. Splunk - Data Ingestion...........................................22
5. Splunk - Source Types............................................29
6. Splunk - Basic Search..............................................34
7. Splunk - Field Searching.........................................39
8. Splunk - Time Range Search...................................45
9. Splunk - Sharing Exporting.....................................51
10. Splunk - Search Language.......................................56
, Splunk - Overview
Splunk is a software which processes and brings out insight
from machine data and other forms of big data. This
machine data is generated by CPU running a webserver,
IOT devices, logs from mobile apps, etc. It is not necessary
to provide this data to the end users and does not have any
business meaning. However, they are extremely important to
understand, monitor and optimize the performance of the
machines.
Splunk can read this unstructured, semi-structured or rarely
structured data. After reading the data, it allows to search,
tag, create reports and dashboards on these data. With the
advent of big data, Splunk is now able to ingest big data
from various sources, which may or may not be machine
data and run analytics on big data.
So, from a simple tool for log analysis, Splunk has come a
long way to become a general analytical tool for
unstructured machine data and various forms of big data.
PRODUCT CATEGORIES
