Douglas Muth on 15 Oct 2018 18:13:51 -0700


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Tonight's Topic @ West

On Mon, Oct 15, 2018 at 11:03 AM Andy Wojnarek <andy.wojnarek@theatsgroup.com> wrote:

Hello All,

 

Tonight’s topic at PLUG West is “Introduction to Splunk w/ real life use cases.”

 

What is Splunk?

“Splunk is a software platform to search, analyze and visualize the machine-generated data gathered from the websites, applications, sensors, devices etc. which make up your IT infrastructure and business.”

 

Why would we be talking about this?

It’s used at a lot of enterprise Linux shops to collect and visualize data.



On a related note, if anyone would like to get up and running in Splunk really quickly, I built a Docker container that can be used to make that happen!

The code is at https://github.com/dmuth/splunk-lab

If you want to start up Splunk, persist the ingested data between runs, and persist the created dashboards as well:

docker run -p 8000:8000 -v /var/log:/logs -v $(pwd)/data:/data -v $(pwd)/app:/app -d dmuth1/splunk-lab

This will even work on a Mac, and I found it was a lot of fun searching through the things that OS/X writes to /var/log/.

If there are any questions about that container, feel free to hit me up or open an issue on GitHub. :-)

-- Doug


___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug