Software applications, such as database applications, web-server applications, and business applications.Network devices such as switches or routers.These are some examples of ITE Work entities: Entities are usually hosts but can also be cloud or virtual resources, network devices, applications, users, and cell towers. Each entity has specific attributes and relationships to other IT processes that uniquely identify it. An entity is an IT component that requires management to deliver an IT service. To see other available add-ons, go to the IT Operations category on Splunkbase to review available add-ons.Īfter getting data in, your next task is to create entities and entity types. See Collect *nix data in ITE Work with the Splunk Add-on for Unix and Linux in the Entity Integrations Manual for configuration steps. Install IT operations add-ons from Splunkbase to help you onboard data from various data sources.įor our use case, we'll use the Splunk Add-on for Unix and Linux to collect data from large-scale Unix and Linux environments. Detailed information for each task follows the diagram. The following diagram lists the apps and features you can use to accomplish each task. To start using ITE Work, complete these tasks. We'll use monitoring Unix and Linux in ITE Work as our example use case throughout the topic. By this we mean that as you examine one KPI at a given point in time, the UI automatically shows you what was happening with the other KPIs at the same time.Follow these high-level steps to get started with Splunk IT Essentials Work (ITE Work). Deep Dives displays the historic data that is behind the KPIs being monitored in correlated bar charts. Glass Tables also act as gateway to the Deep Dives feature. In this way operations personnel can spot problems in the high level view and quickly drill down into detailed views that show what’s really happening. Not only can they be overlaid with numeric and graphical data displays, they can be linked to other glass tables and custom actions. What we didn’t mention is that they are interactive. We mentioned the Glass Tables feature in our coverage of the keynote. Users can set the weighting for the health scores so that it can prioritize KPIs that are more indicative of issues without ignoring the other. The Service Analyzer feature exposes a way to creating health formulas based on multiple KPIs. Or if all of the servers are running at 80% then there could be a systemic problem, even though 80% for a single server is considered normal. But if that same sever stays at 95% for 20 minutes, it means something important is happening to that server. Most of the time, the fact that a web server spiked to 95% CPU utilization for a few seconds isn’t interesting. From installation, Splunk expects most companies to start seeing useful days in a few days.Ī goal of Splunk ITSI is to move people away from thinking about individual KPI scores. Splunk’s new product called IT Service Intelligence (ITSI) is designed to allow analysts create their own dashboards. And with the application developers being pulled in multiple directions, it can be hard to find one to build and maintain custom dashboards. The ad hoc queries written by the analysts are, by their nature, non-repeatable. Splunk itself is good for pulling in arbitrary data sources, allowing analysts to correlate data such as real-time sales data with web server traffic and database health. And without the ability to correlate data across tiers, it is hard to understand why something is happening. There are plenty of tools for looking at the data, but each tool and the data it exposes is isolated from all of the other tools. Yet even today, most shops have trouble understanding what’s happening in their infrastructure. One of the key roles for any operations team is application and service monitoring.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |