2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected...
Transcript of 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected...
![Page 1: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/1.jpg)
Copyright © 2015 Splunk Inc.
SplunkOperational Visibility
Matthias MaierSales Engineer, CISSP
![Page 2: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/2.jpg)
Safe Harbor StatementDuring thecourseof this presentation, wemay make forward looking statements regarding futureeventsor the expected performance of the company. We caution you that such statements reflect our currentexpectationsand estimates based on factors currently known to usand that actual eventsor results coulddiffer materially. For important factors that may causeactual results to differ from those contained in ourforward-‐looking statements, please review our filings with the SEC. The forward-‐looking statementsmade in this presentation are being made as of the time and date of its live presentation. If reviewedafter its live presentation, this presentation may not contain current or accurate information. Wedonotassume any obligation to update any forward looking statements we may make. In addition, anyinformation about our roadmap outlines our general product direction and is subject to change at anytimewithout notice. It is for informational purposes only and shall not be incorporated into any contractor other commitment. Splunk undertakes no obligation either to develop the features or functionalitydescribed or to include any such feature or functionality in a future release.
2
![Page 3: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/3.jpg)
Copyright © 2015 Splunk Inc.
Spelunking:
Splunking:
to explore underground caves
to explore machine data
Splunk
Make machine data accessible, usable and valuable to everyone.
![Page 4: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/4.jpg)
Copyright © 2015 Splunk Inc. 4
Make machine data accessible,usable and valuable to everyone.
4
![Page 5: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/5.jpg)
5
Turning Machine Data Into Business ValueIndex Untapped Data: Any Source, Type, Volume
Online Services Web
Services
ServersSecurity GPS
Location
StorageDesktops
Networks
Packaged Applications
CustomApplicationsMessaging
TelecomsOnline
Shopping Cart
Web Clickstreams
Databases
Energy Meters
Call Detail Records
Smartphones and Devices
RFID
On-‐Premises
Private Cloud
Public Cloud
Ask Any Question
Application Delivery
Security, Compliance and Fraud
IT Operations
Business Analytics
Industrial Data andthe Internet of Things
![Page 6: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/6.jpg)
StructuredRDBMS
SQL Search
Schema at Write Schema at Read
Traditional Splunk
Splunk Approach to Machine Data
Copyright © 2014 Splunk Inc . 6
ETL Universal Indexing
Volume Velocity Variety
Unstructured
![Page 7: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/7.jpg)
ITOperations
Application Delivery
Developer Platform (REST API, SDKs)
Business Analytics
Industrial Data and Internet of
Things
7
Delivers Value Across IT and the Business
Security, Complianceand Fraud
![Page 8: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/8.jpg)
8
Platform for Application Deliveryand IT Operations
ROOT CAUSE AND ISSUE RESOLUTION
PROACTIVEMONITORING AND REAL-‐TIME
ALERTING
DELIVER BETTER QUALITY
CODE/CONFIGURATION FASTER
CLOUD APP AND INFRASTRUCTURE MONITORING
MOBILE APPTROUBLESHOOTING
USER & USAGE ANALYTICS
![Page 9: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/9.jpg)
The old way:Many network issues go undetected• Network monitoring and engineering teams are missing access to important event data
• Errors and warnings buried in logs are ignored because of overwhelming volume
• Writing scripts to analyze raw data is too slow and difficult
Operations Uses
Dave McCallum, Platform Architect
Applications Change Management Networking Servers VirtualizationMessaging
![Page 10: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/10.jpg)
Copyright © 2015 Splunk Inc.
Splunk -‐ Universal Machine Data Platform
Data Onboarding
Search andInvestigate
Building Dashboards
Out of theBox Content
10
![Page 11: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/11.jpg)
Copyright © 2015 Splunk Inc.
Splunk -‐ Universal Machine Data Platform
Data Onboarding
11
Fast time to value
![Page 12: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/12.jpg)
Copyright © 2015 Splunk Inc.
Splunk -‐ Universal Machine Data Platform
Data Onboarding
Search andInvestigate
12
Fast time to value
Reduce the MTTR
![Page 13: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/13.jpg)
Copyright © 2015 Splunk Inc.
Splunk -‐ Universal Machine Data Platform
Data Onboarding
Search andInvestigate
Building Dashboards
13
Fast time to value
Reduce the MTTRCentralized Visibility
![Page 14: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/14.jpg)
Copyright © 2015 Splunk Inc.
Splunk -‐ Universal Machine Data Platform
Data Onboarding
Search andInvestigate
Building Dashboards
Out of theBox Content
14
Fast time to value
Reduce the MTTR
Proactive Monitoring
Centralized Visibility
![Page 15: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/15.jpg)
The old way:Many network issues go undetected• Network monitoring and engineering teams are missing access to important event data
• Errors and warnings buried in logs are ignored because of overwhelming volume
• Writing scripts to analyze raw data is too slow and difficult
The new way: Splunk lets you search the network stack✓Search terabytes of data for network transactions across every component
✓ Index syslog, SNMP traps, configuration and netflowdata
✓Navigate from symptom to root cause quickly
✓Find early warning signs of problems that go undetected with component monitoring
✓Compliment existing network monitoring with scheduled searches
Operations Uses
“Splunk gives our customer service, NOC staff and network engineers comprehensive real time event data for incident response, chronic problem identification and optimization.”
Dave McCallum, Platform Architect
Applications Change Management Networking Servers VirtualizationMessaging
![Page 16: 2015-04-08 SIG NOC Splunk Matthias Maier - TERENA · The*oldway: Many*network*issues*go*undetected • Network*monitoring*and*engineering*teams*are*missing*access*to*important*event*data](https://reader033.fdocuments.in/reader033/viewer/2022042221/5ec7de566d64f341312215bb/html5/thumbnails/16.jpg)
Thank You
Download Splunk for Free – 500 MB/Day
www.splunk.com