Blog

27 Mar 2017

Isiqinisekiso seSplunk - Imibuzo yoNxibelelwano neempendulo

Ikhosi eqeqeshayo i-Splunk iya kunika ngeempawu ezilindeleke ukuba zidibanise idatha edalwe yimishini esebenzisa isofthiwe e-Splunk. I-Splunk Analytics izokunika ithuba lokutshintshisa imiqulu emikhulu yedatha. Le khosi ye-certification ye-Splunk ifaka uqeqesho kwi-inquiry ebalulekileyo, ukwabelana kunye nokukhutshwa kweziphumo, ukwenza iilebhile kunye neentlobo zeemeko, ukuvelisa iingxelo kunye nokuveliswa kwamatshathi. Kuya kukunceda u-ace splink engineering, iSylog syllog, i-syslog iseva, uviwo lwemigi, i-alamu, uphando, kunye needashbhodi kwaye yenza ube ngumqhubi ophumelelayo we-Splunk.

Ukusebenzisa i-Splunk kuzakutshintsha ishishini lakho kwaye liyifake kwizinga elilandelayo. Yiba nokuba kunjalo, umbuzo uwukuthi: Ngaba unyanzela iikhono kunye nekhono lokuba yi-Splunker? Ngethuba elihle lokuba u-ewe, ngoko-ke, zibekele ezona nkqonkqozo ezijongene nokuxhamla kwabasebenzi ekuboneni ukuba inkcaso iyinto engavamile. Unokuqala ngokufumana imibuzo ephakamileyo yeengxoxo ze-Splunk ezixutywayo ezikhankanywe kule bhulogi.

I-10 Iingxoxo zeNtetho neeMpendulo zeSikethi esisiSebenzi

Yintoni e-Splunk? Kutheni i-Splunk isetyenziselwa ukudibanisa idatha yomshini?

I-Splunk yi-Google yedatha yakho yomshini. Yisofthiwe / imoto esetyenziselwa ukucinga, ukujonga, ukuvakalisa, nokuqwalasela idatha yakho yoshishino. I-Splunk ithatha idatha yomatshini enenzuzo kwaye iyitshintsha ibe ngolwazi olusebenzayo ngokunika ixesha lokwenene ukuqonda kwidata yakho ngokusebenzisa iitshathi, ukuqikelela, iingxelo njalonjalo.

I-Splunk isetyenziselwa ukuphula idatha yombane njengoko inganika amava ekusebenziseni ulawulo, imisebenzi ye-IT, ukhuseleko, ukungahambelani, ukuchongwa okungekho nto, ukuphazamiseka kwengozi kunye nokunye.

Ziziphi iindawo zobunjineli be-splunk / splunk?

  • Khangela intloko - unikeza i-GUI ukuba ifune
  • Inkcazo - idatha yedatha yeefayile kunye nedatha.
  • Umthengisi - Iimilo zangaphambili ukuya kwi-Indexer
  • Iseva yokuSebenza - Ulawula amaqhekeza ahlukeneyo kwiimeko ezisasazwayo.

Yintoni ukusetyenziswa kweMvume yoLwazi kwi-Splunk?

Ilayisense yeAcl in Splunk inokuqinisekisa ukuba imilinganiselo efanelekileyo yedata iyafakwa. Ilayisenisi engagqibekanga ixhomekeke kumqulu we data oya kwisiteji ngaphakathi kwewindow ye-24hr kunye nale miqolo, ukuqinisekisa ukuba umhlaba uhlala ngaphakathi kwemida yevolumu efunyenweyo.

Yintoni edibanisa iDlb DB?

Yimodyuli ye-SQL yolwazi jikelele evumela ukuba ungabikho ngokungazenzisiyo ukufaka idatha yeenkcukacha ngeenkcukacha ze-Splunk kunye neengxelo. Inika ukuthembeka, ukulungelelaniswa nokuhlanganiswa kwexesha langempela phakathi kwe-Enterprise Splunk kunye neenkcukacha zolwazi.

Cacisa 'ukuphulwa kwelayisenisi' ukusuka kumbono ongabonakaliyo.

Kwimeko apho uphumelela umda wedatha, uya kuboniswa iphutha lokuphulwa kwelayisenisi. Ilayisenisi yokulumkisa ephoselwayo, iya kunyamezela iintsuku ze-14. Kwilayisenisi okanye kwilayisenisi yezoshishino unakho izaziso ze-5 ngaphakathi kwewindow yefayile ye-30 ehamba phambili phambi kokuba izinto zakho zohlu lwama-Index kunye neengxelo ziyeka ukusebenza. Ngefomu yamahhala, kuya kubonisa nje i-3 tallies yokulumkisa.

Uluphi uluhlu lweenkcukacha eziqhekekileyo?

Uludwe lweSishwankathelo luyifayili engqalileyo yefayili (ifayile efake i-Enterprise isebenzisa ithuba lokuba ungabonakali omnye). Ngethuba elikhethiweyo lokuba ukhetha ukuqhuba ezininzi iintlobo zeengxelo zoluhlu lwe-synopsis ungadinga ukwenza iifayile ezingaphezulu.

Ziziphi iindidi phakathi kwezibalo kunye nemiyalelo yeziganeko?

Izibalo zibiza ukuba wenze ukuqonda kweengcambu kwimihlaba nganye kunye neendawo ezikhoyo kwiindawo zakho ezigciniweyo kwaye uzigcine njengezimpawu kwiindawo ezintsha. Iziganeko zifana nezihlawulelo zecatshulwa, ngaphandle kweziphumo zeqoqo zifakwe kumgca kwisiganeko ngasinye kwaye nje ukuba uhlangeneyo luhambelana naloo mcimbi. I-Eventstats ibhalisa ifunwe ngemilinganiselo efana nezibalo, nangona kunjalo iyabazalisa kwi-data yokuqala engafumananga.

Ziziphi izitya zeSplunk? Cacisa i-lifecycle.

Inkcazo equlethe idatha echongiweyo yaziwa ngokuba yi-container Splunk. Ukongezelela iqulethe imicimbi yexesha elithile. Ukuhamba kwendlela yokuhamba ngempahla kubandakanya ukuthatha emva kwamanyathelo:

  • Ukutshisa - Iqulethwe njengedatha edwelisiweyo kwaye ivulekile ukuyila. Kuloluhlu ngalunye, kukho ubuncinci obuninzi obufikelelekayo
  • Ukufudumala - Kwidatha efudumeleyo idatha esuka kushushu
  • Ubunzima - Idatha yesimo seFold ishukunywe kwishushu
  • Frozen - Idatha isuka kwiqhwa. I-indexer icima idatha eqinisiweyo njengengxaki kodwa kunjalo ke iinkcukacha ziyakwazi ukuyifayile.
  • Uthandiwe - Ulwazi lusetsha kwakhona kwirekhodi yefayili. Ngethuba elide lokuba ubhale idatha eqinisiweyo, ungayibuyisela kwirekhodi ngokuyi-(idibanisa).

Cacisa amandla eMlawuli we-Alert?

Umphathi olungeleyo ubonisa ukuba i-rundown yabaninzi ngokukhawuleza makumkise, ngokomzekelo, ukuvela okulungiselelwe. Inika uxhumano lokubona uluhlu lweenkcukacha ezifakwe kwiikhompyutheni ezivela kulolu hlobo olumkelekileyo. Ngokufanayo ibonisa igama elungileyo, isicelo, ukuhlunga (ukubhukwa, ixesha langempela, okanye ukuhamba kwewindow), ukunyaniseka kunye nemodi.

Cacisa ukwahlula phakathi kokukhangela kwekhanda lokukhangela kunye nokukhangela ukukhangela ikhanda?

Funa ukuhlanganiswa kwentloko kukuhlanganiswa kweevava ezixhunyiwe ezazisetyenziselwa ukwabelana ngomthwalo, ukucwangciswa kunye nedatha yabathengi ngelixa ukhangele iqoqo lekhanda ngumceke we-splunk ishishini lokufuna kufuna ukuzalisa njengexabiso eliphambili lokufuna. Ekubeni iqela lekhanda lokuphanda likhuthaza ukuhambelanisa inxalenye, iidashbhoards ezifanayo kunye nokusukela kungenziwa kwaye kubonwe nawuphi na umntu kwiqela.

&bsp

GTranslate Your license is inactive or expired, please subscribe again!