You're reading from Data Analytics Using Splunk 9.x A practical guide to implementing Splunk's features for performing data analysis at scale

Product type Paperback

Published in Jan 2023

Publisher Packt

ISBN-13 9781803249414

Length 336 pages

Edition 1st Edition

Tools

Splunk

Concepts

Data Analysis

Author (1):

Dr. Nadine Shillingford

Preface

1. Part 1: Getting Started with Splunk

2. Chapter 1: Introduction to Splunk and its Core Components FREE CHAPTER

3. Chapter 2: Setting Up the Splunk Environment

4. Chapter 3: Onboarding and Normalizing Data

5. Part 2: Visualizing Data with Splunk

6. Chapter 4: Introduction to SPL

7. Chapter 5: Reporting Commands, Lookups, and Macros

8. Chapter 6: Creating Tables and Charts Using SPL

9. Chapter 7: Creating Dynamic Dashboards

10. Part 3: Advanced Topics in Splunk

11. Chapter 8: Licensing, Indexing, and Buckets

12. Chapter 9: Clustering and Advanced Administration

13. Chapter 10: Data Models, Acceleration, and Other Ways to Improve Performance

14. Chapter 11: Multisite Splunk Deployments and Federated Search

15. Chapter 12: Container Management

16. Index

17. Other Books You May Enjoy

Technical requirements

Before you begin, you will need the following:

Access to the AWS Management Console (https://aws.amazon.com/console/). This requires Amazon login credentials. The AWS Elastic Compute Cloud (EC2) instances that will host the Splunk deployment server, indexer, and search head are c5.large (Splunk-recommended) instances. They will incur a cost of about $0.085/hr at the time of writing this book. Be careful to turn off the servers once you are finished with the case study to avoid additional costs.
You will need an SSH client to access the Linux-based AWS instances (deploymentserver, searchhead, and indexer). We use the Terminal application on a Macbook in this chapter. You can use a SSH client such as PuTTY (https://www.putty.org) if you are using a Microsoft Windows device.
You will access AWS EC2 instances using key pairs. You will generate a key pair when you launch an instance. You can use one key pair across your different EC2 instances. You...

The rest of the chapter is locked