Followers

Splunk 01- Architecture of Splunk

1 0 Saturday, May 21, 2022 2022-05-21T23:35:00-07:00 Edit this post

Splunk is used for  monitoring and searching through big data . It indexes and correlates information in a container that makes it searchabl...




Splunk is used for monitoring and searching through big data. It indexes and correlates information in a container that makes it searchable, and makes it possible to generate alerts, reports, and visualizations.



Four Stages of Splunk includes

  • Accepts any text data as input
  • Parses data into events (Consider as Rows of a DB Table)
  • Stores events in indexes (Consider as DB Table)
  • Searches and Reports

On the basis of the above capabilities, Splunk is divided into 3 Parts

Forwarder collects data from different sources like servers, network devices, DB servers, etc, and sends it to Indexers for indexing purposes.



Indexer receives the data from Forwarder and parses it into events based on data and index in Splunk. Before indexing, data goes into the license meter( to check the daily data limit to index). During indexing transformation of data also takes place and then store it into Splunk index



Search Head helps to search data on the index and provides visualization.



Splunk is highly scaleable where it has many indexers or forwarders and deployment servers. The below diagram shows the distributed environment of Splunk.


Splunk Enterprise

Splunk Enterprise includes the following software



Splunk Universal Forwarder

Splunk Universal Forwarder includes the following software



mm




COMMENTS

BLOGGER: 1
  1. williamandersonNovember 14, 2023 at 10:34 PM

    Amazon Web Services gives a demo for your satisfaction with the SOA-C02 dumps learning material.

    ReplyDelete

Name

Ansible,6,AWS,1,Azure DevOps,1,Containerization with docker,2,DevOps,2,Docker Quiz,1,Docker Swarm,1,DockerCompose,1,ELK,2,git,2,Jira,1,Kubernetes,1,Kubernetes Quiz,5,SAST DAST Security Testing,1,SonarQube,3,Splunk,2,vagrant kubernetes,1,YAML Basics,1,
ltr
item
DevOpsWorld: Splunk 01- Architecture of Splunk
Splunk 01- Architecture of Splunk
https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg42dY3B--oCcnG1ZHD81Yz7doVg7I21YotHrD2US26HG4crv50ea5iMDxfBBmFXsZZjmSYldfUpGprno_z5k8kFXjFjjrCaI0aTTuOoxhcjUxpOhumNUtsAMVCRKbXXtumDtY8dv7scwxwQ-Zrq_de5a0SH7TjHbhkXpBW-rtF4_DKzRkJCb7yCWTn/w171-h50/logo.jpg
https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg42dY3B--oCcnG1ZHD81Yz7doVg7I21YotHrD2US26HG4crv50ea5iMDxfBBmFXsZZjmSYldfUpGprno_z5k8kFXjFjjrCaI0aTTuOoxhcjUxpOhumNUtsAMVCRKbXXtumDtY8dv7scwxwQ-Zrq_de5a0SH7TjHbhkXpBW-rtF4_DKzRkJCb7yCWTn/s72-w171-c-h50/logo.jpg
DevOpsWorld
https://www.devopsworld.co.in/2022/05/splunk-01-architecture-of-splunk.html
https://www.devopsworld.co.in/
https://www.devopsworld.co.in/
https://www.devopsworld.co.in/2022/05/splunk-01-architecture-of-splunk.html
true
5997357714110665304
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share to a social network STEP 2: Click the link on your social network Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy Table of Content