Splunk 7. x Quick Start Guide : Gain Business Data Insights from Operational Intelligence.

Splunk 7. x Quick Start Guide : Gain Business Data Insights from Operational Intelligence.

Splunk is a leading platform and solution for collecting, searching, and extracting value from ever increasing amounts of big data - and big data is eating the world! This book covers all the crucial Splunk topics and gives you the information and examples to get the immediate job done. You will fin...

Full description

Saved in:
Bibliographic Details
Main Author: Baxter, James H.
Format: eBook
Language:English
Published: Birmingham : Packt Publishing Ltd, 2018.
Subjects:
Data mining.
Big data > Data processing.
Automatic data collection systems.
Database design & theory.
Information architecture.
Data capture & analysis.
Computers > Database Management > Data Mining.
Computers > Data Modeling & Design.
Computers > Data Processing.
Automatic data collection systems
Data mining
Online Access:Click for online access
Table of Contents:
  • Cover; Title Page; Copyright and credits; Dedication; About Packt; Contributors; Table of Contents; Preface; Chapter 1: Introduction to Splunk; What is Splunk?; Splunk products; The history of Splunk; Installing Splunk for free; Splunk components; Splunk processing tiers; Splunk events; Splunk information resources; Summary; Chapter 2: Architecting Splunk; Selecting a Splunk configuration; Data collection
  • data inputs ; Data collection
  • concurrent searches; Distributed versus clustered Splunk environments; Replication and search factor; Replication factor; Search factor
  • Hot/warm and cold bucketsSearch head clusters; Making a design decision; Selecting Splunk hardware options; Performance considerations; Making a hardware selection; Disk-sizing calculations; Summary; Chapter 3: Installing and Configuring Splunk; Installing Splunk Enterprise; Installing Splunk on Linux; Linux settings; User-group
  • environment settings; ulimits; Transparent huge pages; Starting Splunk; Starting on reboot; Stopping Splunk; Installing Splunk on Windows server; Disabling antivirus software; Installing Splunk with a short pathname; Installing Splunk via the GUI
  • Stopping and starting Splunk on WindowsSynchronization of system clocks; Configuring Splunk components; Splunk directory structure; Configuration file precedence; Splunk installation checklist; Component and IP address list; Installation steps; Individual component configurations ; License master and cluster master; Forwarding Splunk's internal logs to the indexers; Pointing servers to the license master; Indexing cluster; Configuring a TCP input; Deployer; Search heads; Designating and starting a search head captain; Checking search head cluster status; Deployment server
  • Multisite environmentsCluster master; Indexers; Search heads; Cross-environment search; Documenting your Splunk deployment; Summary; Chapter 4: Getting Data into Splunk; Installing Splunk universal forwarder; Installation steps; Starting/stopping the universal forwarder; Configuring outputs.conf; Configuring inputs.conf; Setting up a heavy forwarder; Configuring other data source inputs; Configuring an HTTP Event Collector; Testing the HTTP Event Collector; Introduction to apps; Using the deployment server; Configuring a deployment client; Configuring the deployment server
  • Creating deployment appsCreating a serverclass.conf file; Using forwarder management in Splunk web; Managing Splunk Indexes; Creating an index; Deleting index data; Summary indexes; Metrics indexes; Splunk sourcetypes; Creating custom source types; Using the cluster master; Distributing the configuration bundle; Summary; Cahpter 5: Administering Splunk Apps and Users; Using the deployer; Deploying new or updated apps; Configuring users and roles; Splunk authentication; LDAP authentication; SAML authentication; Managing Splunk roles; Search restrictions; Capabilities; Indexes; authorize.conf

Similar Items