Amazing product.
What do you like best about the product?
Splunk dashboards having deep insights of issues in applications and can be integrated with multiple applications
What do you dislike about the product?
It's little costly and training's are not available on topic based.
What problems is the product solving and how is that benefiting you?
The best feature of splunk real user monitoring are finding issues easily and fixing them
Splunk Observability Cloud (SignalFX) - All in one solution for Cloud Apps
What do you like best about the product?
The best feature of Splunk Observability cloud is providing the traces of the application in near real-time.
What do you dislike about the product?
Less Log retention time becoz after sometime some if the traces are not available for post mortem
What problems is the product solving and how is that benefiting you?
Splunk Observability Cloud is kind of one-stop solution for application monitoring by providing traces and giving multiple aspects of the app by simply setting up dashboards, which helps us to give a 360 degree view of the cloud app and infra. This helps us to give a thorough check of the Cloud related issues and take corrective actions.
Splunk is my go to tool for all things observabilty!
What do you like best about the product?
Splunk observabilty cloud enables me to get detailed insights and analytics. We have relied on its intelligent alerting for all our applications. Splunk also provides efficient logging capabilities!
What do you dislike about the product?
The main concern for me is the cost. Splunk tends to get very expensive for large application logging. Since many applications ingest large amounts of data, Splunk increases the overall expenditure.
What problems is the product solving and how is that benefiting you?
Splunk is the go to place to get an overview of the end to end application stack and especially for a micro services driven architecture, Splunk enables to track the flow E2E. Another biggest problem Splunk helps solve is troubleshooting! Due to its immaculate logging and alerting, troubleshooting becomes easy.
Empowering Insights, Simplifying Troubleshooting with Splunk Observability Cloud
What do you like best about the product?
In the world of log monitoring, alerting, and troubleshooting, Splunk Observability Cloud is a great tool.
It combines the greatest aspects of in-the-moment log analysis, individualized alerts and communication tools, enabling IT teams to proactively handle issues and enhance system performance.
Splunk Observability Cloud has is an essential tool for any organization serious about managing the health and performance of its systems with its straightforward user interface and unrivaled scalability.
What do you dislike about the product?
Although the platform offers a good selection of pre-built dashboards and visualizations.
creating customised visualizations may sometimes require a significant amount of work and skill in the Splunk query language. It's bit tedious to learn initially for a new user
What problems is the product solving and how is that benefiting you?
It's helping us daily monitor the applications any change in Infra or application server is notified and it helps in solving and identifying problem beforehand and give a good expirience to end user using application
Gives us early warning on problems that could arise
What is our primary use case?
We have used Splunk to give us insight into the NetFlow of the traffic running through our network. We connect different networks but we only use on-prem. We are in the middle of a spider web, providing these services to different networks. We are trying to gain visibility into the traffic that traverses our network internally.
We are interested in the traffic volume because the services we are looking at are endpoint-encrypted, meaning encrypted traffic between a service provider and a client in another network. So we are not able to look into the media stream.
The networks we are connecting have their own security boundaries and their own security levels, and we don't mess with that. We are just trying to let them talk together.
We have been using Splunk for monitoring who is logging in and how and when.
How has it helped my organization?
It has given us visibility into what is going on in the network, such as how much traffic is running to and from the services, but we are not using Splunk in a straightforward way. When we are looking into reports on how much data has been used, we need to look into another system and enrich it with data from Splunk.
Splunk has drawn our attention to how the network is running. If there are alarms on things that are not functioning, it gives us early warning on problems that could arise.
In terms of operational performance, the efficiency, Splunk has helped us improve. We could have found other tools that would have given us the same efficiency, but this was the tool that we chose. From that perspective, it has been of value to us.
It would have helped us reduce our mean time to detect but I can only guess at how much; perhaps by 25 percent. And we would see a similar reduction for mean time to resolve.
What needs improvement?
It's a bit difficult to use. It takes some time to get into it and to get it to do what you would like it to do. It is not straightforward to use it. Once you have the dashboards for collecting and analyzing transactions configured, they are okay, but it takes some time to do it. Configuration could be easier.
For how long have I used the solution?
We have been using Splunk for about eight years.
What do I think about the scalability of the solution?
We have not looked at Splunk as a means of being able to scale, but we have not been hindered by using Splunk. Our goal has not been growth, but maintaining stable and secure networking, and this is what we have achieved. But with or without Splunk, we would have achieved that anyway.
How are customer service and support?
We really haven't had any technical issues where we involved Splunk's support.
Which solution did I use previously and why did I switch?
We did not have a previous solution like Splunk, other than in-house-developed tools. We got acquainted with Splunk as part of the tender for our network infrastructure, and from that perspective, it has been okay.
What's my experience with pricing, setup cost, and licensing?
Splunk has been fairly expensive, but it has been predictable. You are not punished if you are looking into much more data if you are, for example, under attack. Other tools could be more expensive to use if they charge per incident or the amount of data you are looking into. With other solutions, you could be punished if you need to index more data because of an attack, such as a DDoS attack, and you need to do some forensics on the data.
What other advice do I have?
Why shift to something you don't know when you are, perhaps, happy enough with the tool that you already have? Think about whether you could develop that tool into something that would give you the visibility you would like to have, instead of using Splunk. Are you looking into incidents, traffic flows, indexing per day, or is the issue that you're looking for an alternative with a better price? Think about why you are considering shifting from a tool that you already know.
Troubleshoots quickly and offers end-to-end visibility across the environment
What is our primary use case?
I am a technology analyst. I have been working on a financial project in the US. For this project, I used Splunk APM for troubleshooting and reviewing the logs, and finding errors. Most of our APIs ran on Splunk APM, and we used it to find errors in our production environment.
We are no longer using Splunk APM. We have switched to Dynatrace.
How has it helped my organization?
Splunk APM is very good for monitoring purposes. You can watch application-to-application flows. If you just click on a flow, you can go step by step and debug an issue. The places with errors are marked in red. The API or the application in which you are getting an error is red. From there, you can go to the log or the error, and then the person responsible for that particular API or application has to fix it.
Splunk APM gives tools for user monitoring, logs observability, infrastructure monitoring, synthetic monitoring, and automated on-call.
Splunk APM provides real-time data. In the logs, if you want to see errors related to status 404, you can just write one keyword, and you will get the results.
Splunk APM offers end-to-end visibility across the environment, but it also depends on how your business is set up on Splunk APM.
Splunk APM helped to reduce our mean time to resolve (MTTR). Previously, I had to log into my VPN, run commands, and see the logs. After having Splunk APM, I could click on one link and go through the logs.
We could set up Splunk APM based on our environment. I worked on one project with Splunk APM. In that project, we faced a lot of issues, and I resolved the issues with the help of Splunk APM. I found the accurate logs and the easiest way to resolve the errors.
What is most valuable?
Splunk APM is the most advanced application for performance monitoring and troubleshooting for cloud-native applications and microservices.
The ability to troubleshoot is valuable. While running any product or API, we need to troubleshoot issues. We need to find the error in the logs. In Splunk APM, we have the section logs. In that section, we can search with any particular keywords. Before Splunk APM, I also worked with Splunk Enterprise where we have various dashboards to monitor.
It is an application performance monitoring and observability tool. It is a very good tool. You need to use the documentation on Splunk's website. From there, you can learn many things. I have Splunk certification. You can dive deep into it. For me, it gives end-to-end visibility into our production environment.
What needs improvement?
They can improve the flow system and the keyword language. It has predefined keywords, but they can be improved. I also use LogMeIn where I can use predefined keywords to see the logs.
They should give us the option to use our own language to search. For example, I should be able to search for an ID name along with an error or status code.
For how long have I used the solution?
I worked with Splunk APM for one and a half years.
What do I think about the stability of the solution?
I have not faced any downtime. I have worked with Splunk APM for one and a half years, and I did not face any downtime during this duration of time.
What do I think about the scalability of the solution?
I have never faced any issues with scalability.
How are customer service and support?
I did not have any need to contact support because I did not face any issues.
Which solution did I use previously and why did I switch?
We used another solution previously. In Splunk Enterprise, it is easier to create dashboards. You can easily set up application alerts and infra alerts. You can search with metrics and you can set alerts based on a specific error. Whenever that error occurs, you will receive an alert.
How was the initial setup?
I am not involved in its deployment. In terms of maintenance, it is owned and managed by Splunk. Everything is maintained by Splunk. I have not faced any downtime with Splunk APM. I have also used Splunk Enterprise previously. With both of these products, I did not face any downtime.
What's my experience with pricing, setup cost, and licensing?
The pricing is reasonable.
What other advice do I have?
It is a good tool. It allows you to set alerts for application and infrastructure monitoring, and it allows you to create dashboards. You can set alerts based on the threshold or traffic.
For logging purposes, Splunk APM is very good, but we should be able to use our own search query language. Currently, we can only search based on the predefined tags.
Overall, I would rate Splunk APM a nine out of ten.
Which deployment model are you using for this solution?
Hybrid Cloud
Best platform to draw insights from data
What do you like best about the product?
Splunk is capable of handling huge amounts of data easily and supports various formats of data. It can be used to create dashboards and reports with vital meanings for business.
What do you dislike about the product?
Splunk pricing model is too expensive, I think a free version or tier needs for every feature somewhat like Amazon web services. The product compatibility details needs to be more specific if the scaling up requires more data to be handled.
What problems is the product solving and how is that benefiting you?
The platform helps the projects and organization's to pipeline the data management, data cleaning and analysis, which reduces the time required to get the meaningful data. It reduces the dependency on data scientists or analysts
An Average experience with Splunk
What do you like best about the product?
We use it to collect and analyze metrics from various sources such as applications, lambdas and cron jobs. This helps us to gain insights into performance, resource utilization, and bottlenecks.
What do you dislike about the product?
We are a smaller organization and the pricing structure can be complex and may not be suitable for smaller organizations with limited budgets. The cost of the platform can vary a ton based on different factors such as data volume and additional features, making it less accessible for organizations with limited financial resources
What problems is the product solving and how is that benefiting you?
It help us collect metrics on the services, lambdas and cron jobs that are running. we also use it to do application performance monitoring and log monitoring to ensure nothing is breaking in production.
Good experience - one of the best alerting softwares
What do you like best about the product?
The main feature I have used is the splunk on-call. Compared to others like pagerduty it provides a better dashboard and on-call scheduling cycles which seems to be nonexistent in pagerduty. And the feature of calling the next person in the oncall cycle helps attend the production issues. One other important feature is that it provides reports with many filters, which makes it easier to analyse at the end of weekly oncall cycles. Splunk is quite easy to integrate with new relic alerting.
What do you dislike about the product?
It could have a feature like setting up schedules for time range such as a person can be oncall for the day time and someone else for the night shift which I think currently is unavailable. Sometimes android phone categorises its calls as junk which can be an issue.
What problems is the product solving and how is that benefiting you?
I am most familiar with the alerting mechanism of splunk oncall. It helps us respond to production issues on time and customizability over the mode of alerting such as email, mobile or message is great. The mails contain enough info and link to the issues on aws, gcp or even new relic.
Best tool for production monitoring
What do you like best about the product?
It provides extra traces in production debugging and also it has great notification system.
What do you dislike about the product?
It should have some good beginner tutorial
What problems is the product solving and how is that benefiting you?
It is helping us debugging prodction data and also it has some great dashboard to analyse the
Production data
