Member-only story
Introduction
Some time ago I started studying Splunk, so I’d like to look back on the past and summarize useful study methods and useful site information, about splunk which I used when I started studying Splunk.
First few thing to do
If you want to study Splunk from now on, first prepare an environment where you can study.
- Install Splunk and import sample data: Splunk is free to use as long as you capture 500MB of data per day. If you just study, it will be enough capacity. The computer to install is also compatible with Windows / Linux / Mac, and if you have enough resources of about 1core / 1GB, you can withstand it enough, and if you do not need it, you can turn off the service and no extra resources will be used.
- Preparing the environment: Splunk Cloud can be used immediately with Trial for up to 2 weeks, but we recommend that you keep the environment handy for a long time, so we recommend using the Splunk Enterprise version. You need to download and install the binary here. Alternatively, you can deploy from the Marketplace on AWS / Azure, and if you are a container enthusiast, an image of Splunk is also available. Splunk Enterprise version download (User registration required. Please use other than IE). Enterprise version has a 60-day trial license and then a…
