Scribd
Upload
61 views10 pages

Splunk Enterprise Data Onboarding Course Syllabus

Uploaded by

sweet.revenge1483
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
61 views10 pages

Splunk Enterprise Data Onboarding Course Syllabus

Uploaded by

sweet.revenge1483
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 10

Splunk Enterprise

Data Onboarding
Essentials
Day 1 to 30
Registration Now open

Batch 3
Course Syllabus

y
Create a Splunk.com account.

n
Download Splunk Enterprise's latest version

ah
Day 1 (or) specific version.

Download Splunk Universal Forwarder’s

m c
latest version (or) specific version.

a e
Day 2 R T
Request Splunk Developer License.
How to create a Linux EC2 instance in AWS.
Tools to be installed on your laptop. - Optional

Install Splunk Enterprise on 2 Linux EC2 instances.

Day 3 Install Splunk Universal Forwarder on the Linux


EC2 instance.
Course Syllabus

y
Connect UF with Indexer.
Day 4

n
Connect Search Head with Indexer.

Day 5 ah
Create indexes in Indexer. (Web/Conf/CLI).

amec
Download sample data from GitHub.

Day 6 R T
Upload data on the Indexer UI & search the
data from the Search Head.

Monitor files from UF & search the data from


Seach Head.

What is the difference between Standalone,


Day 7 distributed, and Clustered deployment?
Course Syllabus

y
Why do we need 3 different components?

n
Why can’t we manage it with a single
Day 8

ah
component with a huge hardware capacity
to handle the load?

Day 9
amec
What data can I Index?

Day 10
R T
How to get data into your Splunk deployment
- High Level?

How does Splunk Enterprise handle your


Day 11 data? - Standalone
Course Syllabus
Day 12
ny
How does Splunk Enterprise store your data?
- Standalone

ah
m
Monitor files and directories in Splunk

c
Day 13

a
Enterprise with Splunk Web/CLI/Config file

R T
Day 14 eSpecify input paths with wildcards

Day 15 Include or exclude specific incoming data

How does the Splunk platform handle log


Day 16
file rotation?
Course Syllabus
Day 17
y
Discard specific events and keep the rest

n
Day 18 ah
m
Keep specific events and discard the rest

a ec
R T
How does the Splunk platform determine
Day 19 event boundaries?

Day 20 How does timestamp assignment work?

Day 21 How to Configure timestamp recognition?


Course Syllabus
Day 22
y
How does Splunk build indexed fields?

n
Day 23 ah
m
Why do source types matter?

a ec
R T
Day 24 How to get data from TCP and UDP ports?

How to Monitor Windows event log data


Day 25 with Splunk Enterprise?

Set up and use HTTP Event Collector in


Day 26 Splunk Web/CLI/Config file
Course Syllabus
Day 27
ny
How to create Scripted input to get the
data in?

ah
m
How to create a Splunk Add-on/Modular

c
Day 28 input to integrate any External API with

a
R Te Splunk?

What is the Difference between Scripted


Day 29 Input & Modular Input?

Use persistent queues to help prevent


Day 30 data loss
Interested??

ny
Register for
ah
amec
R T Recorded
Videos

Link is in the Description


Ramany Muthusamy
Specialist - Splunk Custom Dashboarding
& Data Onboarding
[email protected]
+91 - 7604852052
@RamanyTech ramany-m

ramany-muthusamy ramany_tech

You might also like