All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

What is the difference between AWS AMIs 'Splunk Enterprise' and 'Splunk Insights for AWS Cloud Monitoring'

dkolev
Engager
‎01-24-2018 08:59 AM

Hi,
I see there are two flavors of Splunk AWS AMI on the marketplace:
Splunk Enterprise
and
Splunk Insights for AWS Cloud Monitoring

What is the difference if any?
Which one I should use to ingest and visualize the S3 Logs / CloudTrail on my AWS VPC environment?

Thanks,

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

nkwong_splunk
Splunk Employee
Splunk Employee
‎07-06-2018 01:00 AM

Splunk Insights for AWS Cloud Monitoring is an AMI running Splunk Light and is pre-packaged with the Splunk App for AWS and the Splunk Add-On for Amazon Web Services. The Splunk Enterprise AMI is only running the Splunk Enterprise software without any apps or add-ons pre-packaged.

If your daily indexing volume is less then 20GB/day, you can start with the Splunk Insights for AWS Cloud Monitoring to monitor your S3 logs/CloudTrail/etc. If your daily indexing volume will be above 20GB/day, you can either upgrade your Splunk Insights for AWS Cloud Monitoring instance to a Splunk Enterprise license or you can start with the Splunk Enterprise AMI and install the Splunk App for AWS and the Splunk Add-On for Amazon Web Services.

Here is a platform comparison between Splunk Light, Splunk Enterprise, Splunk Cloud, etc.
https://www.splunk.com/en_us/software/features-comparison-chart.html

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

nkwong_splunk
Splunk Employee
Splunk Employee
‎07-06-2018 01:00 AM

Splunk Insights for AWS Cloud Monitoring is an AMI running Splunk Light and is pre-packaged with the Splunk App for AWS and the Splunk Add-On for Amazon Web Services. The Splunk Enterprise AMI is only running the Splunk Enterprise software without any apps or add-ons pre-packaged.

If your daily indexing volume is less then 20GB/day, you can start with the Splunk Insights for AWS Cloud Monitoring to monitor your S3 logs/CloudTrail/etc. If your daily indexing volume will be above 20GB/day, you can either upgrade your Splunk Insights for AWS Cloud Monitoring instance to a Splunk Enterprise license or you can start with the Splunk Enterprise AMI and install the Splunk App for AWS and the Splunk Add-On for Amazon Web Services.

Here is a platform comparison between Splunk Light, Splunk Enterprise, Splunk Cloud, etc.
https://www.splunk.com/en_us/software/features-comparison-chart.html

0 Karma
Reply
Get Updates on the Splunk Community!

Built-in Service Level Objectives Management to Bridge the Gap Between Service & ...

Wednesday, May 29, 2024  |  11AM PST / 2PM ESTRegister now and join us to learn more about how you can ...

Get Your Exclusive Splunk Certified Cybersecurity Defense Engineer at Splunk .conf24 ...

We’re excited to announce a new Splunk certification exam being released at .conf24! If you’re headed to Vegas ...

Share Your Ideas & Meet the Lantern team at .Conf! Plus All of This Month’s New ...

Splunk Lantern is Splunk’s customer success center that provides advice from Splunk experts on valuable data ...