Splunk for DevOps

  • View
    19

  • Download
    0

Embed Size (px)

Transcript

  1. 1. 2017 SPLUNK INC. 2017 SPLUNK INC. 2017 SPLUNK INC. 2017 SPLUNK INC. Splunk Splunk for DevOps | Sep 2017 | Version 1.0
  2. 2. 2017 SPLUNK INC. 2017 SPLUNK INC. During the course of this presentation, we may make forward-looking statements regarding future events or the expected performance of the company. We caution you that such statements reflect our current expectations and estimates based on factors currently known to us and that actual events or results could differ materially. For important factors that may cause actual results to differ from those contained in our forward-looking statements, please review our filings with the SEC. The forward-looking statements made in this presentation are being made as of the time and date of its live presentation. If reviewed after its live presentation, this presentation may not contain current or accurate information. We do not assume any obligation to update any forward looking statements we may make. In addition, any information about our roadmap outlines our general product direction and is subject to change at any time without notice. It is for informational purposes only and shall not be incorporated into any contract or other commitment. Splunk undertakes no obligation either to develop the features or functionality described or to include any such feature or functionality in a future release. Splunk, Splunk>, Listen to Your Data, The Engine for Machine Data, Splunk Cloud, Splunk Light and SPL are trademarks and registered trademarks of Splunk Inc. in the United States and other countries. All other brand names, product names, or trademarks belong to their respective owners. 2017 Splunk Inc. All rights reserved. Forward-Looking Statements
  3. 3. 2017 SPLUNK INC. 2017 SPLUNK INC. Agenda Splunk 1 DevOpsSplunk DevOps 2
  4. 4. 2017 SPLUNK INC. 2017 SPLUNK INC. Who am I? 20168 Splunk : Splunk :
  5. 5. 2017 SPLUNK INC. 2017 SPLUNK INC. Splunk
  6. 6. 2017 SPLUNK INC. 2017 SPLUNK INC. Splunk : AMER EMEA APAC : 2,700+ : $950M (YoY +42%) NASDAQ: SPLK Splunk Products Splunk Enterprise Splunk Cloud Splunk Light : 13,000 110 Fortune 10085 : 1PB/
  7. 7. 2017 SPLUNK INC. 2017 SPLUNK INC. 2017 SPLUNK INC. 2017 SPLUNK INC. 2017 SPLUNK INC.
  8. 8. 2017 SPLUNK INC. 2017 SPLUNK INC. Web Web RFID GPS (Apps / API / SDKs)
  9. 9. 2017 SPLUNK INC. 2017 SPLUNK INC. Web Web RFID GPS (Apps / API / SDKs) ... RDBMS
  10. 10. 2017 SPLUNK INC. 2017 SPLUNK INC. ORDER, 2016-05-21T14:04:12.484,10098213,569281734,67.17.10.12,43CD1A7B8322,SA-2100 MAY 21 14:04:12.996 wl-01.acme.com Order 569281734 failed for customer 10098213. Exception follows: weblogic.jdbc.extensions.ConnectionDeadSQLException: weblogic.common.resourcepool.ResourceDeadException: Could not create pool connection. The DBMS driver exception was: [BEA][Oracle JDBC Driver] Error establishing socket to host and port: ACMEDB-01:1521. Reason: Connection refused 05/21 16:33:11.238 [CONNEVENT] Ext 1207130 (0192033): Event 20111, CTI Num:ServID:Type 0:19:9, App 0, ANI T7998#1, DNIS 5555685981, SerID 40489a07-7f6e-4251-801a- 13ae51a6d092, Trunk T451.16 05/21 16:33:11:242 [SCREENPOPEVENT] SerID 40489a07-7f6e-4251-801a-13ae51a6d092 CUSTID 10098213 05/21 16:37:49.732 [DISCEVENT] SerID 40489a07-7f6e-4251-801a-13ae51a6d092 {actor:{displayName: Go Boys!!,followersCount:1366,friendsCount:789,link: http://dallascowboys.com/,location:{displayName:Dallas, TX,objectType:place}, objectType:person,preferredUsername:B0ysF@n80,statusesCount:6072},body: Cant buy this device from @ACME. Site doesnt work! Called, gave up on waiting for them to answer! RT if you hate @ACME!!,objectType:activity,postedTime:2016-05-21T16:39:40.647-0600} Twitter
  11. 11. 2017 SPLUNK INC. 2017 SPLUNK INC. Twitter Customer ID Order ID Product ID ORDER, 2016-05-21T14:04:12.484,10098213,569281734,67.17.10.12,43CD1A7B8322,SA-2100 MAY 21 14:04:12.996 wl-01.acme.com Order 569281734 failed for customer 10098213. Exception follows: weblogic.jdbc.extensions.ConnectionDeadSQLException: weblogic.common.resourcepool.ResourceDeadException: Could not create pool connection. The DBMS driver exception was: [BEA][Oracle JDBC Driver] Error establishing socket to host and port: ACMEDB-01:1521. Reason: Connection refused 05/21 16:33:11.238 [CONNEVENT] Ext 1207130 (0192033): Event 20111, CTI Num:ServID:Type 0:19:9, App 0, ANI T7998#1, DNIS 5555685981, SerID 40489a07-7f6e-4251-801a- 13ae51a6d092, Trunk T451.16 05/21 16:33:11:242 [SCREENPOPEVENT] SerID 40489a07-7f6e-4251-801a-13ae51a6d092 CUSTID 10098213 05/21 16:37:49.732 [DISCEVENT] SerID 40489a07-7f6e-4251-801a-13ae51a6d092 {actor:{displayName: Go Boys!!,followersCount:1366,friendsCount:789,link: http://dallascowboys.com/,location:{displayName:Dallas, TX,objectType:place}, objectType:person,preferredUsername:B0ysF@n80,statusesCount:6072},body: Cant buy this device from @ACME. Site doesnt work! Called, gave up on waiting for them to answer! RT if you hate @ACME!!,objectType:activity,postedTime:2016-05-21T16:39:40.647-0600} Order ID Twitter ID Customer ID Customer ID Time waiting on hold Customers Tweet Companys Twitter ID
  12. 12. 2017 SPLUNK INC. 2017 SPLUNK INC. Twitter Customer ID Order ID Product ID ORDER, 2016-05-21T14:04:12.484,10098213,569281734,67.17.10.12,43CD1A7B8322,SA-2100 MAY 21 14:04:12.996 wl-01.acme.com Order 569281734 failed for customer 10098213. Exception follows: weblogic.jdbc.extensions.ConnectionDeadSQLException: weblogic.common.resourcepool.ResourceDeadException: Could not create pool connection. The DBMS driver exception was: [BEA][Oracle JDBC Driver] Error establishing socket to host and port: ACMEDB-01:1521. Reason: Connection refused 05/21 16:33:11.238 [CONNEVENT] Ext 1207130 (0192033): Event 20111, CTI Num:ServID:Type 0:19:9, App 0, ANI T7998#1, DNIS 5555685981, SerID 40489a07-7f6e-4251-801a- 13ae51a6d092, Trunk T451.16 05/21 16:33:11:242 [SCREENPOPEVENT] SerID 40489a07-7f6e-4251-801a-13ae51a6d092 CUSTID 10098213 05/21 16:37:49.732 [DISCEVENT] SerID 40489a07-7f6e-4251-801a-13ae51a6d092 {actor:{displayName: Go Boys!!,followersCount:1366,friendsCount:789,link: http://dallascowboys.com/,location:{displayName:Dallas, TX,objectType:place}, objectType:person,preferredUsername:B0ysF@n80,statusesCount:6072},body: Cant buy this device from @ACME. Site doesnt work! Called, gave up on waiting for them to answer! RT if you hate @ACME!!,objectType:activity,postedTime:2016-05-21T16:39:40.647-0600} Order ID Twitter ID Customer ID Customer ID Time waiting on hold Customers Tweet Companys Twitter ID
  13. 13. 2017 SPLUNK INC. 2017 SPLUNK INC. Apps SDK / API &
  14. 14. 2017 SPLUNK INC. 2017 SPLUNK INC. Splunk App RDB Syslog/ TCP IoT Hadoop Platform for Operational Intelligence
  15. 15. 2017 SPLUNK INC. 2017 SPLUNK INC. IT (REST API, SDKs) IT IoT Platform for Operational Intelligence
  16. 16. 2017 SPLUNK INC. 2017 SPLUNK INC. SLA $11.0 M $11.0 M $25.0 M $25.0 M $10.0 M $10.0 M $200+ M $200+ M $1.8 M $1.8 M $1.0 + B $1.0+ B
  17. 17. 2017 SPLUNK INC. 2017 SPLUNK INC. 31,000IP 140 | Linux Splunk index=it sourcetype=apache:access | iplocation src_ip | transaction maxspan=3s src_ip | search eventcount>1000 | table _time Country src_ip eventcount
  18. 18. 2017 SPLUNK INC. 2017 SPLUNK INC. ITIoT
  19. 19. 2017 SPLUNK INC. 2017 SPLUNK INC. 1 2 3 4 4: Web
  20. 20. 2017 SPLUNK INC. 2017 SPLUNK INC. hostnamemount syslog TCP/UDP Event Logs Performance Active Directory syslog Unix / Linux / Windows Splunk Forwarder virtual host Windows shell scripts, API subscriptions Mainframes*nix Splunk App for Stream DevOps, IoT, Containers HTTP Event Collector shell API perf
  21. 21. 2017 SPLUNK INC. 2017 SPLUNK INC. Splunk App Splunk Apps1,300 Other ToolsTicketing/Help Desk Server, Storage, Network Server Virtualization Operating Systems Infrastructure Applications Mobile Applications Cloud Services Custom Applications API Services API SDKs UI
  22. 22. 2017 SPLUNK INC. 2017 SPLUNK INC. Why Splunk?
  23. 23. 2017 SPLUNK INC. 2017 SPLUNK INC.
  24. 24. 2017 SPLUNK INC. 2017 SPLUNK INC. DevOps Splunk
  25. 25. 2017 SPLUNK INC. 2017 SPLUNK INC. DevOps (CI) / (CD) Plan (JIRA, Rally) Code (Git, MS-TFS) Build (Jenkins, Bamboo) Test/QA (Cucumber, SonarQube) Release (Jenkins, Octopus) Stage (Pivotal, AWS) Config (Puppet, Ansible) Monitor (New Relic, Dynatrace) Site Reliability Engineering API / www/HTTP
  26. 26. 2017 SPLUNK INC. 2017 SPLUNK INC. CI / / / &
  27. 27. 2017 SPLUNK INC. 2017 SPLUNK INC. API SDKs UI Other Tools Escalation/ Collaboration Plan Code Build Test/QA Stage Release Config Monitor
  28. 28. 2017 SPLUNK INC. 2017 SPLUNK INC. KPI
  29. 29. 2017 SPLUNK INC. 2017 SPLUNK INC. Insert your own screenshot here. For best results, use an image sized at 1450 x 850
  30. 30. 2017 SPLUNK INC. 2017 SPLUNK INC. curl -k https://:8088/services/collector -H 'Authorization: Splunk ' -d '{"event":"Hello Event Collector"}' IoT API HTTP Event Collector DevOps
  31. 31. 2017 SPLUNK INC. 2017 SPLUNK INC.
  32. 32. 2017 SPLUNK INC. 2017 SPLUNK INC. & &
  33. 33. 2017 SPLUNK INC. 2017 SPLUNK INC. Docker Logging Driver Splunk - TLS/SSL - Splunk HTTP Event Collector Splunk Logging Driver for Docker
  34. 34. 2017 SPLUNK INC. 2017 SPLUNK INC. Jenkins Splunk App for Jenkins
  35. 35. 2017 SPLUNK INC. 2017 SPLUNK INC. / Chef App for Splunk
  36. 36. 2017 SPLUNK INC. 2017 SPLUNK