Splunk operational intelligence cookbook : over 80 recipes for transforming your data into business-critical insights using Splunk / Josh Diakun, Paul R Johnson, Derek Mock.

Format:

Book

Author/Creator:

Diakun, Josh, author.

Johnson, Paul R., author.

Mock, Derek, author.

Series:

Safari tech books online.

Language:

English

Subjects (All):

Big data.

Data mining.

Physical Description:

1 online resource (1 volume) : illustrations

Edition:

Third editon.

Place of Publication:

Birmingham ; Mumbai : Packt, [2018]

System Details:

text file

Summary:

Leverage Splunk's operational intelligence capabilities to unlock new hidden business insights and drive success About This Book Tackle any problems related to searching and analyzing your data with Splunk Get the latest information and business insights on Splunk 7.x Explore the all new machine learning toolkit in Splunk 7.x Who This Book Is For This book is intended for data professionals who are looking to leverage the Splunk Enterprise platform as a valuable operational intelligence tool. The recipes provided in this book will appeal to individuals from all facets of business, IT, security, product, marketing, and many more! Even the existing users of Splunk who want to upgrade and get up and running with Splunk 7.x will find this book to be of great value. What You Will Learn Learn how to use Splunk to gather, analyze, and report on data Create dashboards and visualizations that make data meaningful Build an intelligent application with extensive functionalities Enrich operational data with lookups and workflows Model and accelerate data and perform pivot-based reporting Apply ML algorithms for forecasting and anomaly detection Summarize data for long term trending, reporting, and analysis Integrate advanced JavaScript charts and leverage Splunk's API In Detail Splunk makes it easy for you to take control of your data, and with Splunk Operational Cookbook, you can be confident that you are taking advantage of the Big Data revolution and driving your business with the cutting edge of operational intelligence and business analytics. With more than 70 recipes that demonstrate all of Splunk's features, not only will you find quick solutions to common problems, but you'll also learn a wide range of strategies and uncover new ideas that will make you rethink what operational intelligence means to you and your organization. You'll discover recipes on data processing, searching and reporting, dashboards, and visualizations to make data shareable, communicable, and most importantly meaningful. You'll also find step-by-step demonstrations that walk you through building an operational intelligence application containing vital features essential to understanding data and to help you successfully integrate a data-driven way of thinking in your organization. Throughout the book, you'll dive deeper into Splunk, explore data models and pivots to extend your intelligence capabilities, and perform advanced searching with machine learning to explore your da...

Contents:

Cover

Title Page

Copyright and Credits

Packt Upsell

Contributors

Table of Contents

Preface

Chapter 1: Play Time - Getting Data In

Introduction

Indexing files and directories

Getting ready

How to do it...

How it works...

There's more...

Adding a file or directory data input using the CLI

Adding a file or directory input using inputs.conf

One-time indexing of data files using the Splunk CLI

Indexing the Windows event logs

See also

Getting data through network ports

Adding a network input using the CLI

Adding a network input using inputs.conf

Using scripted inputs

Using modular inputs

Using the Universal Forwarder to gather data

Adding the receiving indexer via outputs.conf

Receiving data using the HTTP Event Collector

Getting data from databases using DB Connect

Loading the sample data for this book

Data onboarding - defining field extractions

Data onboarding - defining event types and tags

Adding event types and tags using eventtypes.conf and tags.conf

Installing the Machine Learning Toolkit

Chapter 2: Diving into Data - Search and Report

Introduction.

The Search Processing Language

Searching in Splunk

Boolean operators

Common commands

Time modifiers

Working with fields

Saving searches in Splunk

Making raw event data readable

Tabulating every field

Removing fields, then tabulating everything else

Finding the most accessed web pages

Searching for the top 10 accessed web pages

Searching for the most accessed pages by user

Finding the most used web browsers

Searching for the web browser data for the most used OS types

Identifying the top-referring websites

Searching for the top 10 using stats instead of top

Charting web page response codes

Totaling success and error web page response codes

Displaying web page response time statistics

Displaying web page response time by action

Listing the top-viewed products

Searching for the percentage of cart additions from product views

Charting the application's functional performance

Charting the application's memory usage

Counting the total number of database connections

See also.

Chapter 3: Dashboards and Visualizations - Make Data Shine

About Splunk dashboards

Using dashboards for Operational Intelligence

Enriching data with visualizations

Available visualizations

Trellis layout

Best practices for visualizations

Creating an Operational Intelligence dashboard

Changing dashboard permissions

Using a pie chart to show the most accessed web pages

Searching for the top ten accessed web pages

Displaying the unique number of visitors

Adding labels to a single value panel

Coloring the value based on ranges

Adding trends and sparklines to the values

Using a gauge to display the number of errors

Charting the number of method requests by type and host

Creating a timechart of method requests, views, and response times

Method requests, views, and response times by host

Using a scatter chart to identify discrete requests by size and response time

Using time series data points with a scatter chart

Creating an area chart of the application's functional statistics

Using metrics data and a trellis layout to monitor physical environment operating conditions

Using a bar chart to show the average amount spent by category

Creating a line chart of item views and purchases over time

Chapter 4: Building an Operational Intelligence Application

Creating an Operational Intelligence application

Creating an application from another application

Downloading and installing a Splunk app

Adding dashboards and reports

Changing permissions of saved reports

Organizing the dashboards more efficiently

Modifying the Simple XML directly

Dynamically drilling down on activity reports

Disabling the drilldown feature in tables and charts

Creating a form for searching web activity

Adding a Submit button to your form

Linking web page activity reports to the form

Adding an overlay to the Sessions Over Time chart

Displaying a geographical map of visitors

Adding a map panel using Simple XML

Mapping different distributions by area

Highlighting average product price

Scheduling the PDF delivery of a dashboard

Chapter 5: Extending Intelligence - Datasets, Modeling and Pivoting

Creating a data model for web access logs

Viewing datasets using the dataset listing page

Searching datasets using the search interface

Creating a data model for application logs

Accelerating data models

Viewing data model and acceleration summary information

Advanced configuration of data model acceleration

Pivoting total sales transactions

Searching datasets using the pivot command

Searching accelerated datasets using the tstats command

Pivoting purchases by geographic location

Pivoting slowest responding web pages

Pivot charting top error codes

Chapter 6: Diving Deeper - Advanced Searching, Machine Learning and Predictive Analytics

Identifying and grouping transactions

Converging data sources

Identifying relationships between fields

Predicting future values

Discovering anomalous values

Leveraging machine learning

Calculating the average session time on a website

Starts with a website visit, ends with a checkout

Defining maximum pause, span, and events in a transaction

Calculating the average execution time for multi-tier web requests

How to do it.

How it works.

Notes:

Description based on print version record.

ISBN:

9781788833080

1788833082

OCLC:

1042342275