Splunk is meant to monitor more than just itself, install the universal forwarder on a virtual machine so that we can send data to the Splunk instance.
- [Instructor] So far we've only looked at logs…that are local to the Splunk server itself.…This is fine for getting a feel for the Splunk…interface and features, but it's not very realistic.…Thankfully, Splunk has the ability to forward logs…from each machine to the Splunk server.…There are actually a few ways to do this,…but for the sake of this course,…we're going to use the Splunk universal forwarder.…To begin, you'll need to set up your Splunk server…to receive data from other instances.…Click on Settings…and go over to Forwarding and Receiving.…
Under Receive data, click Configure receiving.…Click on New Receiving Port…and we'll set the port to 9997,…which is the suggested port here.…If you're using that port for something else…for whatever reason, you can choose a port…that makes sense in your infrastructure.…This is just an arbitrary field.…And that's it, we can click Save.…Now we're ready to set up the…forwarder on our other servers.…We'll follow the same process that…we did for the initial installation.…
- Installing Splunk
- Filtering search data
- Advanced search syntax
- Creating reports and dashboards
- Creating alerts and actions
- Configuring remote data and multiple data streams
Skill Level Beginner
DevOps Foundations: Monitoring and Observabilitywith Ernest Mueller2h 12m Intermediate
1. Tour of Major Features
3. Reporting and Dashboards
5. Practical Splunk
Next steps1m 57s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.