Working with Metrics in Splunk 8.1

Working with Metrics in Splunk 8.1

Working with Metrics in Splunk 8.1

Upcoming Classes

Online

Instructor-led online training

Location Mar 2021 Apr 2021 May 2021 Jun 2021 Jul 2021 Aug 2021 Sep 2021
AMER Eastern Time - Virtual Mar 11 – Mar 12
 Apr 19 – Apr 20
 May 27 – May 28
EMEA UK Time - Virtual Mar 22 – Mar 23
 Jun 21 – Jun 22
AMER Pacific Time - Virtual Mar 29 – Mar 30
APAC Singapore - Virtual Apr 12 – Apr 13
 Jul 12 – Jul 13

Australia

Location Mar 2021 Apr 2021 May 2021 Jun 2021 Jul 2021 Aug 2021 Sep 2021
Ingeniq - Online Mar 25 – Mar 26
 Jun 10 – Jun 11
 Aug 23 – Aug 24

Summary

This nine hour course provides Splunk users in-depth information about metrics, ingesting and searching metrics data, and how to use the Analytics Workspace to analyze and create visualizations.

Description

  • Metrics Overview
  • Metrics Terminology
  • Onboard Metrics Data
  • Metrics Indexing
  • Protocols to Ingest Metrics Data
  • Metrics SPL Commands
  • Performing Log to Metrics Conversion
  • Using the Analytics Workspace
  • Metrics Best Practices

Duration

2 Days

Objectives

Module 1 – Metrics Overview
  • Understand the differences between metrics and events
  • Describe metrics and metrics terminology
  • Identify the storage and performance benefits of metrics
  • Review use cases for searching metrics data
  • Describe metrics dimensions and time series

Module 2 – Indexing and Searching Metrics
  • Describe metrics indexing
  • Create metrics indexes
  • Onboard metrics data
  • Use the mcatalog, msearch, and mstats commands

Module 3 – Bringing Metrics Into Splunk: Metrics-Formatted Data
  • Review metrics source types and supported protocols
  • Use collectd to ingest metrics data
  • Use StatsD to ingest metrics data
  • Verify onboarding of metrics

Module 4 – Bringing Metrics Into Splunk: Converting Logs to Metrics
  • Describe the log-to-metrics process
  • Use mcollect and meventcollect to convert logs to metrics at search time
  • Use Splunk Web to convert logs to metrics at ingent time
  • Use config files to convert logs to metrics at ingest time

Module 5 – Managing Metrics Indexes and Metrics Rollups
  • Manage metrics indexes
  • Understand metrics rollups
  • Configure rollup policies

Module 6 – Analytics Workspace and SAI
  • Use the Analytics Workspace to analyze and visualize metrics data
  • Describe the Splunk App for Infrastructure (SAI)

Module 7 – Best Practices and Performance Tuning
  • Describe metrics best practices
  • Tune the performance of metrics processing

Prerequisites

Required:
  • Fundamentals 1
  • Fundamentals 2
  • Splunk System Administration
    • Recommended
  • Splunk Data Administration
  • Splunk Fundamentals 3
  • Some Linux experience

    •  

    Onsite Training

    For groups of three or more

    Request Quote

    Public Training

    AMER Eastern Time - Virtual

    EMEA UK Time - Virtual

    Chatswood, NSW

    AMER Pacific Time - Virtual

    APAC Singapore - Virtual


    Don't see a date that works for you?

    Request Class

    © 2005- Splunk Inc. All rights reserved.
    Splunk>, Listen to Your Data, The Engine for Machine Data, Splunk Cloud, Splunk Light and SPL are trademarks and registered trademarks of Splunk Inc. in the United States and other countries. All other brand names, product names, or trademarks belong to their respective owners. © Splunk Inc. All rights reserved.