Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
Introduction and Infrastructure Profiling
- Overview of Splunk components and architecture
- Setting up the Splunk environment
- Profiling infrastructure requirements and resource allocation
- Basic deployment types (single instance vs. distributed environment)
- Initial setup and basic infrastructure configuration
Managing and Optimizing Splunk Architecture
- Indexing and data storage best practices
- Understanding forwarders, indexers, and search heads
- Load balancing and data distribution strategies
- Optimizing Splunk’s performance: tuning and scaling
- Configuring indexers and forwarders in a distributed setup
Data Administration and Inputs Management
- Managing and configuring data inputs from various sources
- Understanding parsing, event breaking, and line merging
- Configuring sourcetypes and data normalization
- Using transforms and props for data modification
- Setting up data inputs and configuring props/transforms
Advanced Troubleshooting Techniques
- Monitoring Splunk performance and identifying bottlenecks
- Common Splunk errors and how to resolve them
- Advanced search head clustering and indexer clustering troubleshooting
- Log monitoring and diagnostic tools
- Troubleshooting scenarios and log analysis
Leveraging Splunk’s Full Potential
- Advanced search commands and SPL optimization
- Building dashboards, alerts, and reports for strategic analysis
- Integrating third-party data and advanced data visualization
- Security and user management within Splunk
- Building an end-to-end monitoring dashboard and setting up automated alerts
Summary and Next Steps
Requirements
- Basic understanding of IT infrastructure and systems
- Familiarity with logs and data formats
Audience
- IT administrators
- Infrastructure engineers
- Data analysts
28 Hours
Testimonials (3)
lots of pratical exercises
Marcin - Narodowy Bank Polski
Course - Splunk Data Administration
Labs, they were very interesting.
Aurora Sanz - ITALTEL SA
Course - Splunk Fundamentals
Setting up the universal forwarder and heavy forwarder is something I know for a fact I will use on my team.
