Mar 21 – 27, 2009
Europe/Prague timezone

Log Mining with Splunk

Mar 26, 2009, 6:10 PM
Club A (Prague)

Club A


Prague Congress Centre 5. května 65, 140 00 Prague 4, Czech Republic
oral Software Components, Tools and Databases Software Components, Tools and Databases


Robert Petkus (Brookhaven National Laboratory)


Robust, centralized system and application logging services are vital to all computing organizations, regardless of size. For the past year, the RHIC/USATLAS Computing Facility (RACF) has dramatically augmented the utility of logging services with Splunk. Splunk is a powerful application that functions as a log search engine, providing fast, real-time access to data from servers, applications, and network devices. Splunk at the RACF is configured to parse system and application log files, script output, snmp traps, alerts, and has been integrated into our Nagios monitoring infrastructure. This work will detail our central log infrastructure vis-`a-vis Splunk, examine lightweight agents and example configurations, consider security, and demonstrate functionality. Distributed Splunk deployments or clusters between institutions will be discussed.
Presentation type (oral | poster) Oral

Primary author

Robert Petkus (Brookhaven National Laboratory)


Jason Smith (Brookhaven National Laboratory) Ofer Rind (Brookhaven National Laboratory)

Presentation materials

There are no materials yet.