You’ll import the BOTS v1 dataset into a search head and begin exploring data using the Splunk Search Processing Language (SPL), covering various types of Splunk commands, lookups, and macros. Starting with an introduction to the different Splunk components, such as indexers, search heads, and forwarders, this Splunk book takes you through the step-by-step installation and configuration instructions for basic Splunk components using Amazon Web Services (AWS) instances. This book helps you to make the best use of the impressive and new features to prepare a Splunk installation that can be employed in the data analysis process. Watch the complete video interview below, and be sure to check out more of SiliconANGLE and theCUBE’s coverage of nf 2016.Splunk 9 improves on the existing Splunk tool to include important features such as federated search, observability, performance improvements, and dashboarding. I’ve never seen a community around a product like this. Looking at the nf event and the roles conference attendees play in the field at large, Kurtz was highly enthusiastic. “So that I can turn around and I have this compliance, or I have other compliance, and I can say, ‘Yeah, we’re using Splunk, we’re compliant, we can keep the data separate, we can keep it for as long as we need to.’” “One of the things that I love about Splunk is that as an audit tool it’s very comfortable,” he explained. “And almost every single use-case that we’ve come up with has been this ‘I wonder if we could take these two pieces of data and combine them.’” Comfort of useĪnd beyond those collegiate networkings, Kurtz said, Splunk is making interactions easier for the review side of things as well. “The best way to get use-cases is hallway use-cases you’re standing around with your coworkers in the hallway, or getting a drink of water, and you say, ‘I wonder if we could take this bit of data, and if we could combine it with this bit of data, and we could do something new with it,’” he said. He also touched on how easy it was to come up with new uses for the data, often spur-of-the-moment in nature. Let’s bring in more data let’s bring in new sources of data.’” “And so we started there, and as the security group used it more and more, we turned that on its ear, turned back to the operations group and said, ‘Look at how good this is working look at how much simpler this is making your job.
“We started with an actual need: We had data that was in operations, and that data needed to get to the security group in a timely fashion,” he shared. “And hopefully, eventually even researchers … will be able to use Splunk.” Brainstorms and easeĪsked for more detail on Splunk’s appeal, Kurtz dug deeper into the specifics of the original encounter. “Our goal is to make Splunk into an enterprise tool that the entire university can use, not just security, not just operations everybody is going to be able, at the university, to use it,” Kurtz said. He also shared plans for expanded availability and access to the singular Splunk instance the school is running. We started as a 50-gigabyte customer a little over four years ago we’re at a terabyte now.” “I came in at that level, at the very beginning, and have shepherded Splunk into a full-blown enterprise product.
“Splunk was brought into Arizona State for the security group to pull the information from our operations group, real-time or as real-time as they possibly could,” he said. Kurtz outlined how ASU had initially been drawn to Splunk and how it found room for further growth. While corporations and marketing specialists are finding virtually limitless opportunities in the developing potential of data analysis, the more scholarly side of tech is having just as much fun uncovering ways to apply and recombine the data already at their disposal.Ĭhris Kurtz, Splunk evangelist at Arizona State University (ASU), sat down with John Walls ( and John Furrier ( cohosts of theCUBE, from the SiliconANGLE Media team, during nf 2016 to talk about how Splunk is being utilized at his university and where he sees the strengths of the product and its community.
0 kommentar(er)
