Blogs: splunktalk

Last week, Splunk speaker Peter Zadrozny, former CTO at BEA Systems Europe and author of many Java based books, presented a session on building visibility into application environments to an audience of over 120 attendees at JavaOne in San Francisco. Application logs have been traditionally underestimated in their usefulness, primarily because traditional tools to handle them are limited by relational schemas and clunky reporting interfaces.  A machine data engine like Splunk, which makes no presumptions about formats and schemas during data collection, but helps you extract intelligence from your operational data while reporting, presents a significant opportunity to get easy analytics about your application. With such a powerful engine at your disposal, developers can now simply build in analytics breadcrumbs into…

From a series of live on camera interviews at Splunk’s User Conference 2011 comes an interview two epic Support Splunkers Octavio DiScuillo and Mick Shanaghy. Always a hoot, Mick and Octavio give us a great overview on the Splunk on Splunk or “S.o.S” app available on SplunkBase.com right now. S.o.S is an app that our support team built to help diagnose issues in your splunk deployment. Now, you get to have that very tool. I love it!

If you attended my technical presentation @ the Splunk 2010 users.conf event last called “Splunking Outside The Box“, then you’re probably aware of just how esoteric my thinking can be when it comes to creatively leveraging Splunk for the more non-sensible, yet highly educational use cases.

For example, I showed-off my Splunk for Texas Lotto App, which my team here @ Splunk uses each month to pick our “winning” numbers.

So far, we’ve won about $26…but we’ve spent ten times that amount along the way. But that’s beside the point.

Anyway, at this year’s conference I am hoping to avoid those everyday boring run-of-the-mill searches and get you thinking outside the box yet again.

Yes, I…

I uncharacteristically spent more than a few minutes last weekend writing up and testing a response for Splunk>Answers, and after addressing it in last week’s podcast, I thought I should cover it further in a blog post.

The title theme of our SplunkTalk podcast last week was the Big Event, and we broke down a bunch of dialog on event duration, data classification and ultimately eventtypes.  Notorious Splunk customer Matt Uebel’s question on Answers asked about “color coding” events within the results tables in the UI.

While it’s less complicated than assembling IKEA furniture, it’s not completely intuitive. In any case – you need to do three things, and the first is…

The 20th episode of SplunkTalk is live from the Network Operations Center (NOC) at Interop NYC 2010. Super Splunker Karandeep “Deep” Bains shares his experiences being a part of the Interop NOC staff, vast knowledge of Splunk and even schools Wilde on the true origin of the “fishbucket”. Questions, answers, noise and mayhem in the Interop NOC!

Episodes are recorded live every Friday at 11AM Central Time – Email us at splunktalk@splunk.com to ask questions and have them answered on air!

Enjoy listening
if (WIDGETBOX) WIDGETBOX.renderWidget(’2c2c95c7-9f81-4309-9c8a-d71f94e740f9′);Get the Mp3 Player Widget widget and many other great free widgets at Widgetbox! Not seeing a widget? (More info)

What a blast! The Splunk Ninja and Maverick were “live” at Splunk HQ with Jeff remote in Chicago. Today’s chat is all about eventtypes and their use for classifying events and making search more useful for certain users. Also, we cover the many ways to calculate duration between ranges of events. John Mark Walker, Splunk’s Director of Community covers some upcoming meetups. “This is by far one of the funniest episodes we’ve done” says Michael Wilde, Splunk Ninja, and producer/editor of this podcast. Enjoy this one.

Episodes are recorded live every Friday at 11AM Central Time – Email us at splunktalk@splunk.com to ask questions and have them answered on air!

Enjoy Listening

if (WIDGETBOX) WIDGETBOX.renderWidget(’9a00d451-3c23-411c-9e0e-acde87789ae2′);Get the Mp3 Player Widget…

Today on SplunkTalk its all about search and all about pipes! We deviate from our normal Q&A format to have a spirited discussion around the search language, the “pipe” character, how to string search commands together and make awesome unicorn-laden double rainbows happen. Jeff, Michael and Maverick are at it again. Enjoy.

Episodes are recorded live every Friday at 11AM Central Time – Email us at splunktalk@splunk.com to ask questions and have them answered on air!

Enjoy Listening!

if (WIDGETBOX) WIDGETBOX.renderWidget(’99e88d92-4ff3-4fcf-a133-7bd8241015f4′);Get the Mp3 Player Widget widget and many other great free widgets at Widgetbox! Not seeing a widget? (More info)

In this video, first details are shown on how some of the dashboards for the SplunkTalk Podcast analytics are done. Insecure login, roles, users, security and a few tips on tweaking the dashboard are discussed.

Fullscreen the video. It will look much better as Splunk has a large web UI.

For those who might have a flash blocker installed preventing the player from loading in your browser (as the movie is right under this message), here is a link to the movie.

The 16th episode of SplunkTalk is all about custom log files and data sources. How to properly index them, considerations around reporting and field extraction and even screen-scraped output from mainframes is all the rage for Michael, Jeff & Maverick. Jeff’s got a Splunk User Group coming up this week in Columbus, Ohio, Maverick’s battery went dead…and Wilde.. we’ll he’s just Wilde.

Episodes are recorded live every Friday at 11AM Central Time – Email us at splunktalk@splunk.com to ask questions and have them answered on air!

Enjoy Listening!

if (WIDGETBOX) WIDGETBOX.renderWidget(‘b10a4a72-eb46-4cdb-9c12-a05abed140ef’);Get the Mp3 Player Widget widget and many other great free widgets at Widgetbox! Not seeing a widget? (More info)

This week, Jeff Blake, Field Reporter and Weatherman is on location inside the eye of something called “Hurricane Sean”. Topics for this episode are: Putting a Pause/Play button on a real-time dashboard and monitoring Windows WMI from Linux. We chat a bit about Splunk Answers and a new Splunk app on SplunkBase developed by Nick Mealy and David Carasso called “Splunk Discover” — analyzes your Splunk install and examines the data for fields and reports. Check it out!

Episodes are recorded live every Friday at 11AM Central Time – Email us at splunktalk@splunk.com to ask questions and have them answered on air!

Enjoy Listening

if (WIDGETBOX) WIDGETBOX.renderWidget(’35bca370-4322-444e-963c-fd75e7701af2′);Get the Mp3 Player Widget widget and many other great free…