[go: up one dir, main page]
Scribd
Upload
488 views9 pages

Network Monitoring Using Splunk

Splunk is software used for searching, monitoring, and examining machine-generated data. It captures, indexes, and correlates real-time data from various sources into a searchable database that can generate graphs, reports, alerts and visualizations. Network monitoring using Splunk involves setting up a script to ping targets and log the results, importing the log files into Splunk, performing search queries on the data to analyze ping results over time, and saving results as a dashboard for visualization.

Uploaded by

Dhanalaxmi Chellakumaran
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
488 views9 pages

Network Monitoring Using Splunk

Splunk is software used for searching, monitoring, and examining machine-generated data. It captures, indexes, and correlates real-time data from various sources into a searchable database that can generate graphs, reports, alerts and visualizations. Network monitoring using Splunk involves setting up a script to ping targets and log the results, importing the log files into Splunk, performing search queries on the data to analyze ping results over time, and saving results as a dashboard for visualization.

Uploaded by

Dhanalaxmi Chellakumaran
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 9

NETWORK MONITORING USING

SPLUNK
Network monitoring using splunk 2

Table of Contents

Network monitoring using splunk 3


Description 3
Lab Steps 3
Supporting References 9

Document Version 1.0 2


Network monitoring using splunk 3

1. Network monitoring using splunk

1.1 Description

Splunk​ is a software mainly ​used for​ searching, monitoring, and examining


machine-generated Big Data through a web-style interface. ​Splunk​ performs capturing,
indexing, and correlating the real-time data in a searchable container from which it can
produce graphs, reports, alerts, dashboards, and visualizations.

How does network monitoring work?

They tend to check the activity and health of internal systems via the ​network​ by sending
a signal, called a ping, to various system ports. The testing system uses a huge variety of
check intervals, which is basically the time between pings.

1.2 Lab Steps

STEP 1:

Download and Install splunk free enterprise on your local system, from the splunk
website.
Login to the splunk account using the credentials.

STEP 2:

Move into the root directory, and create a directory named ‘pings’. Within the directory,
create another directory called ‘targets’

Document Version 1.0 3


Network monitoring using splunk 4

STEP 3:

Move into the directory created, and using nano editor, create a file called ’monitor.sh’

STEP 4:

Within the file, type of the content as follows which takes in the logs

STEP 5:

In order to provide the file, a permission to be executable, execute the following


command:

Document Version 1.0 4


Network monitoring using splunk 5

Run the script:

STEP 6:

We the use the tail command which allows us to continuously update and see the last 10
lines of the output file, here the output file being, ‘googledns.txt’. Click on ‘control c’ to exit

STEP 7:

Go to the splunk account and click on Add data>>Monitor>>Files & Directories>>Browse


files. Browse and select the ‘target’ file which we had created above.

Document Version 1.0 5


Network monitoring using splunk 6

Document Version 1.0 6


Network monitoring using splunk 7

Click on Select, leaving the rest of the settings default, and it will lead to the page where
the logs are displayed

STEP 8:

Do a search query that describes all the ping results from one host to the timechart
function, from which we can view the average of the timechart values.

Document Version 1.0 7


Network monitoring using splunk 8

STEP 9:

We can save the result as a dashboard, by the following actions

Document Version 1.0 8


Network monitoring using splunk 9

Once the dashboard is saved, click on ‘view dashboard’ to view the dashboard created.

1.3 Supporting References

https://www.youtube.com/watch?v=1wkmEvsUe68

https://www.youtube.com/watch?v=HPVlHQjnxYs

Document Version 1.0 9

You might also like