Book description
Demystify Big Data and discover how to bring operational intelligence to your data to revolutionize your work
About This Book
Get maximum use out of your data with Splunks exceptional analysis and visualization capabilities
Analyze and understand your operational data skillfully using this end-to-end course
Full coverage of high-level Splunk techniques such as advanced searches, manipulations, and visualization
Who This Book Is For
This course is for software developers who wish to use Splunk for operational intelligence to make sense of their machine data. The content in this course will appeal to individuals from all facets of business, IT, security, product, marketing, and many more
What You Will Learn
Install and configure the latest version of Splunk.
Use Splunk to gather, analyze, and report data
Create Dashboards and Visualizations that make data meaningful
Model and accelerate data and perform pivot-based reporting
Integrate advanced JavaScript charts and leverage Splunks APIs
Develop and Manage apps in Splunk
Integrate Splunk with R and Tableau using SDKs
In Detail
Splunk is an extremely powerful tool for searching, exploring, and visualizing data of all types. Splunk is becoming increasingly popular, as more and more businesses, both large and small, discover its ease and usefulness. Analysts, managers, students, and others can quickly learn how to use the data from their systems, networks, web traffic, and social media to make attractive and informative reports. This course will teach everything right from installing and configuring Splunk.
The first module is for anyone who wants to manage data with Splunk. Youll start with very basics of Splunk installing Splunk before then moving on to searching machine data with Splunk. You will gather data from different sources, isolate them by indexes, classify them into source types, and tag them with the essential fields.
With more than 70 recipes on hand in the second module that demonstrate all of Splunks features, not only will you find quick solutions to common problems, but youll also learn a wide range of strategies and uncover new ideas that will make you rethink what operational intelligence means to you and your organization.
Dive deep into Splunk to find the most efficient solution to your data problems in the third module. Create the robust Splunk solutions you need to make informed decisions in big data machine analytics. From visualizations to enterprise integration, this well-organized high level guide has everything you need for Splunk mastery.
This learning path combines some of the best that Packt has to offer into one complete, curated package. It includes content from the following Packt products:
Splunk Essentials - Second Edition
Splunk Operational Intelligence Cookbook - Second Edition
Advanced Splunk
Style and approach
Packed with several step by step tutorials and a wide range of techniques to take advantage of Splunk and its wide range of capabilities to deliver operational intelligence within your enterpise
Downloading the example code for this book. You can download the example code files for all Packt books you have purchased from your account at http://www.PacktPub.com. If you purchased this book elsewhere, you can visit http://www.PacktPub.com/support and register to have the code file.
Table of contents
-
Splunk: Enterprise Operational Intelligence Delivered
- Table of Contents
- Splunk: Enterprise Operational Intelligence Delivered
- Credits
- Preface
-
1. Module 1
- 1. Splunk in Action
- 2. Bringing in Data
- 3. Search Processing Language
- 4. Data Models and Pivot
- 5. Data Optimization, Reports, Alerts, and Accelerating Searches
-
6. Panes of Glass
- Creating effective dashboards
- Types of dashboard
- Form inputs
- Creating a time range input
- Creating a radio input
- Creating a dropdown input
- Static Real-Time dashboard
- Creating a map called a choropleth
- Summary
- 7. Splunk SDK for JavaScript and D3.js
- 8. HTTP Event Collector
-
9. Best Practices and Advanced Queries
- Temporary indexes and oneshot indexing
- Searching within an index
- Search within a limited time frame
- Quick searches via fast mode
- Using event sampling
- Splunk Universal Forwarders
- Advanced queries
-
How to improve logs
- Including clear key-value pairs
- Creating events that are understandable to human readers
- Remember to use timestamps for all events
- Be sure your identifiers are unique
- Log using text format, not binary
- Use formats that developers can use easily
- Log what you think might be useful at some point
- Create use categories with meaning
- Include the source of the log event
- Minimize the number of multi-line events
- Summary
-
2. Module 2
- 1. Play Time – Getting Data In
-
2. Diving into Data – Search and Report
- Introduction
- Making raw event data readable
- Finding the most accessed web pages
- Finding the most used web browsers
- Identifying the top-referring websites
- Charting web page response codes
- Displaying web page response time statistics
- Listing the top viewed products
- Charting the application's functional performance
- Charting the application's memory usage
- Counting the total number of database connections
-
3. Dashboards and Visualizations – Making Data Shine
- Introduction
- Creating an Operational Intelligence dashboard
- Using a pie chart to show the most accessed web pages
- Displaying the unique number of visitors
- Using a gauge to display the number of errors
- Charting the number of method requests by type and host
- Creating a timechart of method requests, views, and response times
- Using a scatter chart to identify discrete requests by size and response time
- Creating an area chart of the application's functional statistics
- Using a bar chart to show the average amount spent by category
- Creating a line chart of item views and purchases over time
-
4. Building an Operational Intelligence Application
- Introduction
- Creating an Operational Intelligence application
- Adding dashboards and reports
- Organizing the dashboards more efficiently
- Dynamically drilling down on activity reports
- Creating a form for searching web activity
- Linking web page activity reports to the form
- Displaying a geographical map of visitors
- Scheduling PDF delivery of a dashboard
- 5. Extending Intelligence – Data Models and Pivoting
-
6. Diving Deeper – Advanced Searching
- Introduction
- Calculating the average session time on a website
- Calculating the average execution time for multi-tier web requests
- Displaying the maximum concurrent checkouts
- Analyzing the relationship of web requests
- Predicting website traffic volumes
- Finding abnormally-sized web requests
- Identifying potential session spoofing
-
7. Enriching Data – Lookups and Workflows
- Introduction
- Looking up product code descriptions
- Flagging suspect IP addresses
- Creating a session state table
- Adding hostnames to IP addresses
- Searching ARIN for a given IP address
- Triggering a Google search for a given error
- Creating a ticket for application errors
- Looking up inventory from an external database
- 8. Being Proactive – Creating Alerts
- 9. Speeding Up Intelligence – Data Summarization
-
10. Above and Beyond – Customization, Web Framework, REST API, HTTP Event Collector, and SDKs
- Introduction
- Customizing the application navigation
- Adding a force-directed graph of web hits
- Adding a calendar heatmap of product purchases
- Adding cell highlighting of average product price
- Remotely querying Splunk's REST API for unique page views
- Creating a Python application to return unique IP addresses
- Creating a custom search command to format product names
- Collecting data from remote scanning devices
-
3. Module 3
- 1. What's New in Splunk 6.3?
- 2. Developing an Application on Splunk
- 3. On-boarding Data in Splunk
- 4. Data Analytics
- 5. Advanced Data Analytics
- 6. Visualization
- 7. Advanced Visualization
- 8. Dashboard Customization
- 9. Advanced Dashboard Customization
- 10. Tweaking Splunk
- 11. Enterprise Integration with Splunk
- 12. What Next? Splunk 6.4
- Biblography
- Index
Product information
- Title: Splunk: Enterprise Operational Intelligence Delivered
- Author(s):
- Release date: February 2017
- Publisher(s): Packt Publishing
- ISBN: 9781787288256
You might also like
book
IBM Tivoli Storage Manager as a Data Protection Solution
When you hear IBM® Tivoli® Storage Manager, the first thing that you typically think of is …
book
Building Reliable Services on the Cloud
For a product or service to be successful, it must be reliable. Users need to trust …
book
Splunk Operational Intelligence Cookbook - Second Edition
Over 70 practical recipes to gain operational data intelligence with Splunk Enterprise About This Book This …
book
Big Data Analytics Using Splunk: Deriving Operational Intelligence from Social Media, Machine Data, Existing Data Warehouses, and Other Real-Time Streaming Sources
Big Data Analytics Using Splunk is a hands-on book showing how to process and derive business …
