External reviews
External reviews are not included in the AWS star rating for the product.
Fully featured and performant
What do you like best about the product?
Splunk provides a convenient mechanism for gathering numerous system and software logs. The ability to search historical and real-time logs is a key capability for our monitoring. The custom field extraction and reporting are also a great feature for analysis.
What do you dislike about the product?
Splunk relies on a Perl-based regular expression structure. I can regex just about anything I want in a python regex and routinely am frustrated by Splunk's support of only Perl regex. This translates into a lot of lost time trying to figure out how to get my custom field extract to extract only what I want extracted.
What problems is the product solving and how is that benefiting you?
We see benefits in two key areas.
First, automatic detection and notification of errors in our volumes of logs. With a distributed system churning out logs from numerous components, it is impossible for a human to review those logs, detect anomalies, and correlate errors across them. With the use of Splunk Enterprise, we are able to set up intelligent searches that detect error custom error conditions and generate alerts to our operators for triage.
Second, a significant reduction in effort to perform analysis of software performance and usage. Through adding custom log messages in our software and custom field extraction in Splunk, we are able to generate detailed performance information that can be viewed in real-time or over custom historical periods. Similarly we are able to analyze our logs to determine how our system is being used. These features are critical to our operations and are a huge cost savings in time and effort.
First, automatic detection and notification of errors in our volumes of logs. With a distributed system churning out logs from numerous components, it is impossible for a human to review those logs, detect anomalies, and correlate errors across them. With the use of Splunk Enterprise, we are able to set up intelligent searches that detect error custom error conditions and generate alerts to our operators for triage.
Second, a significant reduction in effort to perform analysis of software performance and usage. Through adding custom log messages in our software and custom field extraction in Splunk, we are able to generate detailed performance information that can be viewed in real-time or over custom historical periods. Similarly we are able to analyze our logs to determine how our system is being used. These features are critical to our operations and are a huge cost savings in time and effort.
Recommendations to others considering the product:
Splunk is an excellent solution for simple to complex systems for log retention and analysis.
- Leave a Comment |
- Mark review as helpful
Okay for DB monitoring
What do you like best about the product?
The interface is fairly easy to use and you can access your data from anywhere after you log in. It works well when you don't have a ton of data.
What do you dislike about the product?
The query language is not intuitive and can feel difficult to use. Graphing and charting isn't easy to use either, though it seems like it could be a nice feature.
What problems is the product solving and how is that benefiting you?
Real time alerting, application monitoring, feature monitoring
Recommendations to others considering the product:
You have to learn the Splunk query language, or designate at least one or two people on your team to become proficient in it. You will may need to rewrite your logs because Splunk likes to index a specific way.
great tool for drawing out insights from voluminous data!
What do you like best about the product?
ease of use and relatively simple learning curve
What do you dislike about the product?
can be super expensive and the administration of it.
What problems is the product solving and how is that benefiting you?
being able to highlight problem areas in large logs and address them quickly
Great product for organizing and searching large sets of data
What do you like best about the product?
Splunk does a good job of ingesting log data in a variety of formats, without needing to define every field to parse ahead of time. Many modules available to help process common sources
What do you dislike about the product?
Dashboard setup is somewhat limited without aftermarket plugins.
What problems is the product solving and how is that benefiting you?
Combining many different log types into a single searchable repository makes it easy to correlate activity from many sources and gain a fuller understanding of what is going on.
Spunk is a must have for any large corporation
What do you like best about the product?
The query language, speed, and visualizations are truly amazing. Reporting, alerting, and ability to read any log format known to man just makes it that much better. For more advanced and dedicated users, scripting is also available in power shell or python.
What do you dislike about the product?
Not sure there is much to dislike, maybe cost?
What problems is the product solving and how is that benefiting you?
1. It fits our mission which is to grow our advanced analytics capabilities
2. Error prevention and monitoring in real time is huge
2. Error prevention and monitoring in real time is huge
Used everyday for 3 years
What do you like best about the product?
It's extremely fast, and reasonably easy to use. Dashboards can be setup to work in realtime, which is fantastic for tracking live events.
Responsive service and generally updates were good.
Responsive service and generally updates were good.
What do you dislike about the product?
It's not quite fully fledged as a database tool, or our version wasn't anyway. Sub-searches had a 10k limit, so that was occasionally a problem.
What problems is the product solving and how is that benefiting you?
Mainly used to test the product beacons are working properly, and for any live events analysis.
Recommendations to others considering the product:
It's a straightforward front end which should be suitable for most purposes.
Splunk
What do you like best about the product?
Quick although it goes thru a ton of data. Once logs are pulled the info is easy to read and the query run is easily adjusted using the settings on the side.
What do you dislike about the product?
Hard to learn! So hard! I understand that businesses are different but man, I could have used a tutorial on even the basics!
What problems is the product solving and how is that benefiting you?
We use it to pull logs and data at a software company. Makes it easy to pull and share logs with other teams and even adjust the timeframe. Great tool when trying to determine potential issues in the software.
Powerful, Malleable, sometimes too complex
What do you like best about the product?
Incredibly powerful, can handle the entirety of a large scale online business data indexing. Can dive into just about any error type and logs to debug whats going on in the business. Good looking dashboards to track statistics, admittedly underutilized.
What do you dislike about the product?
Requires nearly a specialty in the program itself, while it can do just about anything log and data related, it needs classes and instruction to be fully utilized. The query language can be a bit overbearing and needs a bit of time to get used to it. Doesn't get its full potential realized until expertise is obtained.
What problems is the product solving and how is that benefiting you?
Identifying and triggering of alerts for various error types and volumes. Investigation into incidents related to customer activity, server functionality, and various business situations. Can dig into just about anything done from the frontend to the backend data-wise.
Recommendations to others considering the product:
If you/your company is utilizing or planning on utilizing Splunk, then I would highly recommend the Splunk training that is offered. It can be expensive, but if you want to get the the full Splunk experience it is highly recommended. Before any Splunk training, I was only using about 10% of its power. I would like to think I am up to 50% now.
Handy tool to spot errors in logs
What do you like best about the product?
The search query that uses wildcards , filters and time sorting
What do you dislike about the product?
The fact that you can't extract the full stack trace , or view the log file containing the error at the exact timestamp
What problems is the product solving and how is that benefiting you?
When a hosted customer reports an issue, I save time by not going through all the log files for each server, but I just look for a specific key word in spline to extract the exceptions
Splunk occasional user
What do you like best about the product?
The quality of data that stores within splunk and can be searched in so many different ways. It's the only way we can take very granular customer data and pull it to analyze.
What do you dislike about the product?
Not user-friendly if you're non technical. You have to learn how to operate Splunk in the way it reads and that's not intuitive at first.
What problems is the product solving and how is that benefiting you?
Being able to keep track of customer data for a longer period of time and be able to store the massive amount of data that requires outside of our system.
Recommendations to others considering the product:
Large cost, it's worthwhile to make sure you need large amounts of data stored outside of your product/data warehouse and the cost/benefit analysis is worth that. Also need to make sure users at your company are aware of how to use this tool which requires some time and effort.
showing 381 - 390