21-27 March 2009
Prague
Europe/Prague timezone

Log Mining with Splunk

26 Mar 2009, 18:10
20m
Club A (Prague)

Club A

Prague

Prague Congress Centre 5. května 65, 140 00 Prague 4, Czech Republic
oral Software Components, Tools and Databases Software Components, Tools and Databases

Speaker

Robert Petkus (Brookhaven National Laboratory)

Description

Robust, centralized system and application logging services are vital to all computing organizations, regardless of size. For the past year, the RHIC/USATLAS Computing Facility (RACF) has dramatically augmented the utility of logging services with Splunk. Splunk is a powerful application that functions as a log search engine, providing fast, real-time access to data from servers, applications, and network devices. Splunk at the RACF is configured to parse system and application log files, script output, snmp traps, alerts, and has been integrated into our Nagios monitoring infrastructure. This work will detail our central log infrastructure vis-`a-vis Splunk, examine lightweight agents and example configurations, consider security, and demonstrate functionality. Distributed Splunk deployments or clusters between institutions will be discussed.
Presentation type (oral | poster) Oral

Primary author

Robert Petkus (Brookhaven National Laboratory)

Co-authors

Jason Smith (Brookhaven National Laboratory) Ofer Rind (Brookhaven National Laboratory)

Presentation Materials

There are no materials yet.