Splunk: Unterschied zwischen den Versionen

Aktuelle Version vom 8. Dezember 2022, 09:57 Uhr

Was ist das?

SIEM (Security Information and Event Management)

Splunk Installation

Tutorial Link

Splexicon Link

Installation Manual Link

Capacity Planning Manual Link

Reference hardware. Reference host specification: 12 CPU cores at 2 Ghz, 12GB RAM. Mi-range specification 24 CPU cores, 64GB RAM, High-performance: 48 CPU cores, 128GB RAM

Deploy Link

Hinzufügen von Daten. Link

Get Data Link

Auf Ubuntu Server. Link

Um Splunk nutzen zu können und downloaden braucht man ein Account bei Splunk.com.

Schulung zur Einführung in die Administration. Link

Infos zu IT Operation Management Link

Ports Link

Splunk Architecture Link

  wget -O splunk-7.0.2-03bbabbd5c0f-linux-2.6-amd64.deb 'https://www.splunk.com/bin/splunk/DownloadActivityServlet?architecture=x86_64&platform=linux&version=7.0.2&product=splunk&filename=splunk-7.0.2-03bbabbd5c0f-linux-2.6-amd64.deb&wget=true'
  sudo dpkg -i splunk-7.0.2-03bbabbd5c0f-linux-2.6-amd64.deb
  sudo /opt/splunk/bin/splunk start

Splunk Apps für vmware

Installation von Add-on schlug fehl: "Invalid app contents: archive contains more than one immediate subdirectory: and Splunk_TA_esxilogs"

Einrichtung

Splunk App Analytis für Linux: Details

Token Erstellen

event-collector

Alternative: Splunk Alternatives

@@ Zeile 1: / Zeile 1: @@
-xcxyc
+Was ist das?
+SIEM (Security Information and Event Management)
+;Splunk Installation
+Tutorial [https://www.edureka.co/blog/splunk-tutorial Link]
+Splexicon [http://docs.splunk.com/Splexicon Link]
+Installation Manual [http://docs.splunk.com/Documentation/Splunk/7.0.2/Installation/Whatsinthismanual Link]
+Capacity Planning Manual [http://docs.splunk.com/Documentation/Splunk/7.0.2/Capacity/Referencehardware Link]
+:Reference hardware. Reference host specification: 12 CPU cores at 2 Ghz, 12GB RAM. Mi-range specification 24 CPU cores, 64GB RAM, High-performance: 48 CPU cores, 128GB RAM
+Deploy [http://docs.splunk.com/Documentation/Splunk/7.0.2/InheritedDeployment/Deploymenttopology Link]
+Hinzufügen von Daten. [http://docs.splunk.com/Documentation/Splunk/7.0.2/Installation/ReadytostartusingSplunk Link]
+Get Data [http://docs.splunk.com/Documentation/Splunk/7.0.2/Data/Usingforwardingagents Link]
+Auf Ubuntu Server. [https://hackertarget.com/install-splunk-ubuntu-in-5-mins/ Link]
+Um Splunk nutzen zu können und downloaden braucht man ein Account bei Splunk.com.
+Schulung zur Einführung in die Administration. [https://www.robotron.de/schulungszentrum/kurssuche/kursdetails/splunk-einfuehrung-in-die-administration/ Link]
+Infos zu IT Operation Management [https://www.splunk.com/de_de/solutions/solution-areas/it-operations-management.html Link]
+Ports [https://answers.splunk.com/answers/350229/what-ports-will-a-cluster-master-function-on-when.html  Link]
+Splunk Architecture [https://www.edureka.co/blog/splunk-architecture/ Link]
+   wget -O splunk-7.0.2-03bbabbd5c0f-linux-2.6-amd64.deb 'https://www.splunk.com/bin/splunk/DownloadActivityServlet?architecture=x86_64&platform=linux&version=7.0.2&product=splunk&filename=splunk-7.0.2-03bbabbd5c0f-linux-2.6-amd64.deb&wget=true'
+   sudo dpkg -i splunk-7.0.2-03bbabbd5c0f-linux-2.6-amd64.deb
+   sudo /opt/splunk/bin/splunk start
+;Splunk Apps für vmware
+:Installation von Add-on schlug fehl: "Invalid app contents: archive contains more than one immediate subdirectory: and Splunk_TA_esxilogs"
+:[http://docs.splunk.com/Documentation/VMW/3.3.2/Installation/InstalltheSplunkAppforVMwareinadistributeddeployment Einrichtung]
+;Splunk App Analytis für Linux
+:[https://splunkbase.splunk.com/app/3777/#/details  Details]
+;Token Erstellen
+[http://dev.splunk.com/view/event-collector/SP-CAAAE7C event-collector]
+; Alternative
+:[https://www.dnsstuff.com/splunk-alternatives Splunk Alternatives]

Splunk: Unterschied zwischen den Versionen

Aktuelle Version vom 8. Dezember 2022, 09:57 Uhr

Navigationsmenü

Meine Werkzeuge

Namensräume

Varianten

Ansichten

Mehr

Suche

Navigation

Werkzeuge