The real power of Splunk comes how it parses logs and makes them searchable and indexable. Get familiar with this feature by looking at fields in your search results.
- [Instructor] Head back to the search app…and this time we'll search for star,…that'll just show us all events in the last 24 hours.…You can see there's quite a few,…and because we are not in fast mode anymore,…it takes a little while for those to show up.…You'll wanna be in smart mode for this lesson.…Take a look at this column on the left.…You see this section called selected fields?…There's a few things that show up here.…We've got host, source, and sourcetype.…
Let me click on host.…It shows two values here,…but we actually only have one server.…That's because my hostname changed…after Splunk had started up.…Now try clicking on source.…You can see it lists the top 10 values.…These are all the different locations…where our events are coming from.…You can see that most of them are in the nginx access log.…There's also a little bit of a visualization here,…although in this case it's not especially useful.…And you can see there's a few links to reports,…but let's move on instead of looking at those.…
You can use these search fields…
- Installing Splunk
- Filtering search data
- Advanced search syntax
- Creating reports and dashboards
- Creating alerts and actions
- Configuring remote data and multiple data streams
Skill Level Beginner
DevOps Foundations: Monitoring and Observabilitywith Ernest Mueller2h 12m Appropriate for all
1. Tour of Major Features
3. Reporting and Dashboards
5. Practical Splunk
Next steps1m 57s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.