Course for Splunk Cloud Customers: Advanced Searching & Reporting
This training Course for Splunk Cloud Customers: Advanced Searching & Reporting focuses on more advanced search and reporting commands.
Splunk is the software that allows and manages search data from any app, server, and the network device in no time. Splunk makes machine data reachable, utilizable and useful to everyone. It’s a secure process to consider the streams of machine data produced by the technology infrastructure and IT systems —virtual, physical, and in the cloud.
This training focuses on large enterprise deployments. Participants will be able to understand the different best practices and steps for preparing, data collecting, and sizing. Workshop style labs offer the participants an opportunity to devise a deployment based on a common distributed use case.
-
Module 1 – Using Search Efficiently
- Lesson 1: Review search architecture
- Lesson 3: How bloom filters are used to improve search speed
- Lesson 2: Understand how the components of a bucket (.tsidx an djournal.gz files) are used
- Lesson 4: Describe the parts of a search string
- Lesson 6: Create better searches
- Lesson 5: Understand the use of centralized vs. distributable commands
-
Module 2 – More Search Tuning
-
Module 3 – Manipulating and Filtering Data
-
Module 4 – Working with Multivalue Fields
-
Module 5 – Using Advanced Transactions
-
Module 6 – Working with Time
-
Module 7 – Combining Searches
-
Module 8 – Using Subsearches
-
Module 9 – Some Extra Tips
0.00 average based on 0 ratings
