Why Splunk?
Splunk is used to analyze and monitor machine data/digital exhaust generated by various systems, enabling organizations to gain insights and optimize their infrastructure.
Below could be the problems with digital exhaust.
- Volume - huge amount of raw data
- Velocity - huge amount of data generated every second
- Structured/semi structured/Unstructured data
- Distribution - data generated from various sources. Monoliths/Microservices/apps etc
Splunk Components
splunkd process runs on
- End points/sources of data generation where Splunk forwarder runs to send data from source to Splunk
- Splunk indexer/Indexes maintained by Splunk on Splunk platform to receive and store/process data. These will convert raw data into searchable events and will also execute searches
- Splunk search head - to provide user interface to users to access data stored in Splunk
SPL
Monitoring - updated soon
Commands
Monitoring - updated soon
No comments:
Post a Comment