Splunk Tutorial 01: What is Splunk?

What is Splunk?

Is it a Business Intelligence (BI) tools? No. It is more than a traditional BI tools.

 

[vtftable cols=”{0}0-3:d9d9d9;{/}”]
Platform;;;Data;;;Primary Sources;;;Real Time;nn;
Splunk;;;Unstructured (included Machine Data) &{;n}Structured;;;IT Systems;;;Close to Real Time;nn;
BI Tools;;;Structured;;;Databases;;;Usually No;nn;
[/vtftable]

 

Traditional BI tools summarise data from database and them produce the report reporting the fact and follow by some kind of prediction . However,in the real world, a lot of data is not stored in the database or in a structure format. For example server log, they are usually stored in a machine data format. There are simply stored as a machine data and usually no one will have look into those data until it go into archive or something happened.

This is where Splunk work in. It is an organisational intelligence and read machine data, visualise it, report it, investigate it, and also provide alert.

When it say Data, another difference between Splunk and traditional is Splink also analysis machine data.

Leave a Comment