Splunk 简明教程
Splunk Tutorial
Splunk 是一款用于搜索和分析机器数据的软件。此机器数据可以来自 Web 应用程序、传感器、设备或用户创建的任何数据。它通过分析在各种进程中生成的日志来满足 IT 基础设施的需求,但它还可以分析具有正确数据建模的任何结构化或半结构化数据。它具有内置功能,可识别数据类型、字段分隔符并优化搜索过程。它还提供搜索结果的数据可视化。
Splunk is a software used to search and analyze machine data. This machine data can come from web applications, sensors, devices or any data created by user. It serves the needs of IT infrastructure by analyzing the logs generated in various processes but it can also analyze any structured or semi-structured data with proper data modelling. It has built-in features to recognize the data types, field separators and optimize the search processes. It also provides data visualization on the search results.
Audience
本教程面向希望深入理解 Splunk 基本概念的 IT 专业人员、学生和 IT 基础设施管理专业人员。完成本教程后,您将掌握 Splunk 的中级专业知识,并能够轻松地利用您的知识解决更具挑战性的问题。
This tutorial targets IT professionals, students, and IT infrastructure management professionals who want a solid grasp of essential Splunk concepts. After completing this tutorial, you will achieve intermediate expertise in Splunk, and easily build on your knowledge to solve more challenging problems.
Prerequisites
读者应熟悉 SQL 等查询语言。在使用计算机应用程序中的典型操作(例如存储和检索数据并读取计算机程序生成的日志)方面的一般知识将非常有用。
The reader should be familiar with querying language like SQL. General knowledge in typical operations in using computer applications like storing and retrieving data and reading the logs generated by computer programs will be an highly useful.