This 2-day, Splunk Fundamentals - Level 2 class picks up after our 2-day Level 1 class to bring you deeper into Splunk features. Features that will help you capture and index data so that you can generate graphs, reports, alerts, dashboards, and visualizations.PrerequisitesIndividuals taking this class should have also completed the Splunk Fundamentals - Level 1 class or have equivalent practical experience using Splunk.Course OutlineIntroduction and reviewSplunk Enterprise FeaturesSplunk Enterprise FeaturesSearch ReviewThe Search pipelineSearch modesSearch best practicesGetting data into SplunkData InputsIndexing files and directoriesIndexing the Windows Event LogsGetting data through network portsScripted inputsConfiguring a Universal ForwarderUsing the HTTP Event Collector (HEC)Getting data from databases using DB ConnectRegular Expressions (“rex”,”regex”) in Splunk field extractionsAdding structure & meaning to dataBuilding an Operational Intelligence AppApplication ArchitectureApp folder structureCreating an app from another appAdding AssetsCreating & customizing reports & dashboardsAdding geographical mapsHighlighting Data by RangeScheduling PDF DeliveryAdvanced QueryingThe search commandThe where commandThe eval commandThe fields commandThe fillnull commandSUM(), AVG(), MIN(), MAX(), COUNT(), etc…The join commandThe trendline commandAnalytics and Machine LearningLinear regression on timeseriesThe Machine Learning ToolkitFinding anomaliesIdentifying clustersDetecting outliersForecasting Time SeriesOptimizing SplunkSummary indexingBackfilling a summary indexReport Acceleration
Overview
Taught by
ONLC Training Centers
