04906nam 2200649 450 991046416000332120200520144314.01-78217-384-6(CKB)2670000000587561(EBL)1901912(SSID)ssj0001435006(PQKBManifestationID)11838279(PQKBTitleCode)TC0001435006(PQKBWorkID)11428253(PQKB)10885636(MiAaPQ)EBC1901912(CaSebORM)9781782173830(PPN)228017505(Au-PeEL)EBL1901912(CaPaEBR)ebr11001680(CaONFJC)MIL681961(OCoLC)898755512(EXLCZ)99267000000058756120150114h20142014 uy 0engurunu|||||txtccrMastering Splunk optimize your machine-generated data effectively by developing advanced analytics with Splunk /James Miller1st editionBirmingham, England :Packt Publishing,2014.©20141 online resource (344 p.)Professional Expertise DistilledIncludes index.1-78217-383-8 1-322-50679-5 Cover; Copyright; Credits; About the Author; About the Reviewers; www.PacktPub.com; Table of Contents; Preface; Chapter 1: The Application of Splunk; The definition of Splunk; Keeping it simple; Universal file handling; Confidentiality and security; The evolution of Splunk; The Splunk approach; Conventional use cases; Investigational searching; Searching with pivot; The event timeline; Monitoring; Alerting; Reporting; Visibility in the operational world; Operational intelligence; A technology-agnostic approach; Decision support - analysis in real time; ETL analytics and preconceptionsThe complements of SplunkODBC; Splunk - outside the box; Customer Relationship Management; Emerging technologies; Knowledge discovery and data mining; Disaster recovery; Virus protection; The enhancement of structured data; Project management; Firewall applications; Enterprise wireless solutions; Hadoop technologies; Media measurement; Social media; Geographical Information Systems; Mobile Device Management; Splunk in action; Summary; Chapter 2: Advanced Searching; Searching in Splunk; The search dashboard; The new search dashboard; The Splunk search mechanismThe Splunk quick reference guide Please assist me, let me go; Basic optimization; Fast, verbose, or smart?; The breakdown of commands; Understanding the difference between sparse and dense; Searching for operators, command formats, and tags; The process flow; Boolean expressions; You can quote me, I'm escaping; Tag me Splunk!; Assigning a search tag; Tagging field-value pairs; Wild tags!; Disabling and deleting tags; Transactional searching; Knowledge management; Some working examples; Subsearching; Output settings for subsearches; Search Job Inspector; Searching with parametersThe eval statement A simple example; Splunk macros; Creating your own macro; Using your macros; The limitations of Splunk; Search results; Some basic Splunk search examples; Additional formatting; Summary; Chapter 3: Mastering Tables, Charts, and Fields; Tables, charts, and fields; Splunking into tables; The table command; The Splunk rename command; Limits; Fields; An example of the fields command; Returning search results as charts; The chart command; The split-by fields; The where clause; More visualization examples; Some additional functions; Splunk bucketingReporting using the time chart command Arguments required by the time chart command; Bucket time spans versus per_* functions; Drilldowns; The drilldown options; The basic drilldown functionality; Row drilldowns; Cell drilldowns; Chart drilldowns; Legends; Pivot; The pivot editor; Working with pivot elements; Filtering your pivots; Split; Column values; Pivot table formatting; A quick example; Sparklines; Summary; Chapter 4: Lookups; Introduction; Configuring a simple field lookup; Defining lookups in Splunk Web; Automatic lookups; The Add new page; Configuration filesImplementing a lookup using configuration files - an exampleThis book is for those Splunk developers who want to learn advanced strategies to deal with big data from an enterprise architectural perspective. You need to have good working knowledge of Splunk.Data miningComputer programsElectronic books.Data miningComputer programs.006.754Miller James525914MiAaPQMiAaPQMiAaPQBOOK9910464160003321Mastering Splunk2019970UNINA