i'm new in this
i want to know how much time of learning how to use splunk and it's fontionalities
thk's
@Sarah89,
You should start looking through the docs provided by MarioM. It also helps to give yourself a task whilst learning (e.g. Want to monitor disk space), this way you can follow the process from start to finish. For example, on Linux installation this could be:
df -m
"You should also jump on the IRC chat channel "#splunk" (link: http://www.splunk.com/view/SP-CAAACDF). As there many helpful and friendly users there. So you'll be able to get a quick answer to simple queries.
Hope this helps
MHibbin
@Sarah89,
You should start looking through the docs provided by MarioM. It also helps to give yourself a task whilst learning (e.g. Want to monitor disk space), this way you can follow the process from start to finish. For example, on Linux installation this could be:
df -m
"You should also jump on the IRC chat channel "#splunk" (link: http://www.splunk.com/view/SP-CAAACDF). As there many helpful and friendly users there. So you'll be able to get a quick answer to simple queries.
Hope this helps
MHibbin
ok ,i will do this
create a new question with details of what you have done and paste your conf file.
As well as an extract of your \splunkforwarder\var\log\splunk\splunkd.log
for forwading can someone explain the basic procedure to me ,using universal forwarding
ps: i followed all the steps mentioned on distributed deployement manual ,but it doesn't seem to work
please can someone help
well thk's a lot for your answers
it should probably also be noted... Splunk is such a vast and "deep" platform that you can never truly "master" it. I'm sure even some of the Splunk "veterans" do not know everything in the world of Splunk.
or better yet (from the splunk docs) =p
http://dev.splunk.com/web_assets/developers/pdf/splunk_reference.pdf
http://docs.splunk.com/images/a/a3/Splunk_4.x_cheatsheet.pdf
For the search language, don't forget the search cheat sheet and PDF reference:
cool, good luck! it's fairly simple once you've done it a few times (i think!)
thk's your answer, i started with the manual user and i finished it
and now i'm using distributed deployment manual for deploying topologies, and forwarders
it's very interessting
here Splunk Tutorial is a good place to start and it will get you through most of splunk features.