You're reading from Data Analytics Using Splunk 9.x A practical guide to implementing Splunk's features for performing data analysis at scale

Product type Paperback

Published in Jan 2023

Publisher Packt

ISBN-13 9781803249414

Length 336 pages

Edition 1st Edition

Tools

Splunk

Concepts

Data Analysis

Author (1):

Dr. Nadine Shillingford

View More author details

Table of Contents (18) Chapters

Preface

1. Part 1: Getting Started with Splunk

2. Chapter 1: Introduction to Splunk and its Core Components FREE CHAPTER

3. Chapter 2: Setting Up the Splunk Environment

4. Chapter 3: Onboarding and Normalizing Data

5. Part 2: Visualizing Data with Splunk

6. Chapter 4: Introduction to SPL

7. Chapter 5: Reporting Commands, Lookups, and Macros

8. Chapter 6: Creating Tables and Charts Using SPL

9. Chapter 7: Creating Dynamic Dashboards

10. Part 3: Advanced Topics in Splunk

11. Chapter 8: Licensing, Indexing, and Buckets

12. Chapter 9: Clustering and Advanced Administration

13. Chapter 10: Data Models, Acceleration, and Other Ways to Improve Performance

14. Chapter 11: Multisite Splunk Deployments and Federated Search

15. Chapter 12: Container Management

16. Index

Why subscribe?

17. Other Books You May Enjoy

Installing Splunk Enterprise

In this chapter, we will install and deploy Splunk instances to simulate the environment used to generate the BOTS Dataset v1 app in our case study. Our deployment will consist of one deployment server, one indexer, one search head, and three forwarders. We will utilize AWS EC2 instances for each of the components. Figure 2.1 shows the main components. We will deploy the AWS EC2 Splunk Enterprise Amazon Machine Image (AMI) to host the deployment server (deploymentserver), search head (searchhead), and indexer (indexer). These devices are represented as orange rectangles in Figure 2.1. The forwarders (forwarder1, forwarder2, and forwarder3) are AWS EC2 instances running Windows Server 2019. The forwarders in the BOTS Dataset v1 app are named we8105desk, de9041srv, and we1149srv, but we will use a simple naming convention (forwarder1, forwarder2, and forwarder3) in the instructions. They are represented as blue rectangles here:

Figure 2.1 – Windows event logging case study: Splunk deployment

...

The rest of the chapter is locked

You're reading from Data Analytics Using Splunk 9.x A practical guide to implementing Splunk's features for performing data analysis at scale

Table of Contents (18) Chapters

Installing Splunk Enterprise

Authors (1)

Personalised recommendations for you

You're reading from Data Analytics Using Splunk 9.x A practical guide to implementing Splunk's features for performing data analysis at scale

Table of Contents (18) Chapters

Installing Splunk Enterprise

Unlock this book and the full library FREE for 7 days

Authors (1)

Personalised recommendations for you