Splunk Developer?s Guide: Design, implement, and publish custom Splunk applications and add-ons following best practices

Smith

$38.99

4 (6 Ratings)

Paperback May 2015 180 pages 1st Edition

Smith

$38.99

4 (6 Ratings)

Paperback May 2015 180 pages 1st Edition

What do you get with Print?

Instant access to your digital copy whilst your Print order is Shipped

Paperback book shipped to your preferred address

Redeem a companion digital copy on all Print orders

Access this title in our online reader with advanced features

DRM FREE - Read whenever, wherever and however you want

View table of contents

Preview Book

Description

If you are a Splunk user and want to enter the wonderful world of Splunk application development, then this book is for you. Some experience with Splunk, writing searches, and designing basic dashboards is expected.

Who is this book for?

What you will learn

Implement modular input and a custom D3 data visualization
Create a directory structure and set view permissions
Create a search view and a dashboard view using advanced XML modules
Enhance your application using event types, tags, and macros
Package a Splunk application using best practices
Publish a Splunk application to the Splunk Community

Estimated delivery fee Deliver to United States

Economy delivery 10 - 13 business days

Free ~~$6.95~~

Premium delivery 6 - 9 business days

$21.95

(Includes tracking information)

What do you get with Print?

Instant access to your digital copy whilst your Print order is Shipped

Paperback book shipped to your preferred address

Redeem a companion digital copy on all Print orders

Access this title in our online reader with advanced features

DRM FREE - Read whenever, wherever and however you want

Frequently bought together

$60.99

$38.99

Splunk Operational Intelligence Cookbook

$54.99

Total $ 154.97

FAQs

What is the digital copy I get with my Print order?

When you buy any Print edition of our Books, you can redeem (for free) the eBook edition of the Print Book you’ve purchased. This gives you instant access to your book when you make an order via PDF, EPUB or our online Reader experience.

What is the delivery time and cost of print book?

Shipping Details

USA:

Economy: Delivery to most addresses in the US within 10-15 business days

Premium: Trackable Delivery to most addresses in the US within 3-8 business days

UK:

Economy: Delivery to most addresses in the U.K. within 7-9 business days.
Shipments are not trackable

Premium: Trackable delivery to most addresses in the U.K. within 3-4 business days!
Add one extra business day for deliveries to Northern Ireland and Scottish Highlands and islands

EU:

Premium: Trackable delivery to most EU destinations within 4-9 business days.

Australia:

Economy: Can deliver to P. O. Boxes and private residences.
Trackable service with delivery to addresses in Australia only.
Delivery time ranges from 7-9 business days for VIC and 8-10 business days for Interstate metro
Delivery time is up to 15 business days for remote areas of WA, NT & QLD.

Premium: Delivery to addresses in Australia only
Trackable delivery to most P. O. Boxes and private residences in Australia within 4-5 days based on the distance to a destination following dispatch.

India:

Premium: Delivery to most Indian addresses within 5-6 business days

Rest of the World:

Premium: Countries in the American continent: Trackable delivery to most countries within 4-7 business days

Asia:

Premium: Delivery to most Asian addresses within 5-9 business days

Disclaimer:
All orders received before 5 PM U.K time would start printing from the next business day. So the estimated delivery times start from the next day as well. Orders received after 5 PM U.K time (in our internal systems) on a business day or anytime on the weekend will begin printing the second to next business day. For example, an order placed at 11 AM today will begin printing tomorrow, whereas an order placed at 9 PM tonight will begin printing the day after tomorrow.

Unfortunately, due to several restrictions, we are unable to ship to the following countries:

Afghanistan
American Samoa
Belarus
Brunei Darussalam
Central African Republic
The Democratic Republic of Congo
Eritrea
Guinea-bissau
Iran
Lebanon
Libiya Arab Jamahriya
Somalia
Sudan
Russian Federation
Syrian Arab Republic
Ukraine
Venezuela

What is custom duty/charge?

Customs duty are charges levied on goods when they cross international borders. It is a tax that is imposed on imported goods. These duties are charged by special authorities and bodies created by local governments and are meant to protect local industries, economies, and businesses.

Do I have to pay customs charges for the print book order?

The orders shipped to the countries that are listed under EU27 will not bear custom charges. They are paid by Packt as part of the order.

List of EU27 countries: www.gov.uk/eu-eea:

A custom duty or localized taxes may be applicable on the shipment and would be charged by the recipient country outside of the EU27 which should be paid by the customer and these duties are not included in the shipping charges been charged on the order.

How do I know my custom duty charges?

The amount of duty payable varies greatly depending on the imported goods, the country of origin and several other factors like the total invoice amount or dimensions like weight, and other such criteria applicable in your country.

For example:

If you live in Mexico, and the declared value of your ordered items is over $ 50, for you to receive a package, you will have to pay additional import tax of 19% which will be $ 9.50 to the courier service.
Whereas if you live in Turkey, and the declared value of your ordered items is over € 22, for you to receive a package, you will have to pay additional import tax of 18% which will be € 3.96 to the courier service.

How can I cancel my order?

Cancellation Policy for Published Printed Books:

You can cancel any order within 1 hour of placing the order. Simply contact customercare@packt.com with your order details or payment transaction id. If your order has already started the shipment process, we will do our best to stop it. However, if it is already on the way to you then when you receive it, you can contact us at customercare@packt.com using the returns and refund process.

Please understand that Packt Publishing cannot provide refunds or cancel any order except for the cases described in our Return Policy (i.e. Packt Publishing agrees to replace your printed book because it arrives damaged or material defect in book), Packt Publishing will not accept returns.

What is your returns and refunds policy?

Return Policy:

We want you to be happy with your purchase from Packtpub.com. We will not hassle you with returning print books to us. If the print book you receive from us is incorrect, damaged, doesn't work or is unacceptably late, please contact Customer Relations Team on customercare@packt.com with the order number and issue details as explained below:

If you ordered (eBook, Video or Print Book) incorrectly or accidentally, please contact Customer Relations Team on customercare@packt.com within one hour of placing the order and we will replace/refund you the item cost.
Sadly, if your eBook or Video file is faulty or a fault occurs during the eBook or Video being made available to you, i.e. during download then you should contact Customer Relations Team within 14 days of purchase on customercare@packt.com who will be able to resolve this issue for you.
You will have a choice of replacement or refund of the problem items.(damaged, defective or incorrect)
Once Customer Care Team confirms that you will be refunded, you should receive the refund within 10 to 12 working days.
If you are only requesting a refund of one book from a multiple order, then we will refund you the appropriate single item.
Where the items were shipped under a free shipping offer, there will be no shipping costs to refund.

On the off chance your printed book arrives damaged, with book material defect, contact our Customer Relation Team on customercare@packt.com within 14 days of receipt of the book with appropriate evidence of damage and we will work with you to secure a replacement copy, if necessary. Please note that each printed book you order from us is individually made by Packt's professional book-printing partner which is on a print-on-demand basis.

What tax is charged?

Currently, no tax is charged on the purchase of any print book (subject to change based on the laws and regulations). A localized VAT fee is charged only to our European and UK customers on eBooks, Video and subscriptions that they buy. GST is charged to Indian customers for eBooks and video purchases.

What payment methods can I use?

You can pay with the following card types:

Visa Debit
Visa Credit
MasterCard
PayPal

What is the delivery time and cost of print books?

Shipping Details

USA:

Economy: Delivery to most addresses in the US within 10-15 business days

Premium: Trackable Delivery to most addresses in the US within 3-8 business days

UK:

Economy: Delivery to most addresses in the U.K. within 7-9 business days.
Shipments are not trackable

Premium: Trackable delivery to most addresses in the U.K. within 3-4 business days!
Add one extra business day for deliveries to Northern Ireland and Scottish Highlands and islands

EU:

Premium: Trackable delivery to most EU destinations within 4-9 business days.

Australia:

India:

Premium: Delivery to most Indian addresses within 5-6 business days

Rest of the World:

Premium: Countries in the American continent: Trackable delivery to most countries within 4-7 business days

Asia:

Premium: Delivery to most Asian addresses within 5-9 business days

Unfortunately, due to several restrictions, we are unable to ship to the following countries:

Afghanistan
American Samoa
Belarus
Brunei Darussalam
Central African Republic
The Democratic Republic of Congo
Eritrea
Guinea-bissau
Iran
Lebanon
Libiya Arab Jamahriya
Somalia
Sudan
Russian Federation
Syrian Arab Republic
Ukraine
Venezuela

Filter reviews by

All

Amazon verified reviews

David Paper Jul 06, 2015

As Splunk has grown up, books focusing on specific functions in depth become much more interesting. App development is something that most Splunk admins do, but may not fully understand all of the components available to them. Over time, Splunk had added new features like HTML dashboards, which many admins may not be taking advantage of.The progression of SimpleXML -> AdvancedXML -> HTML dashboards is not without friction. The SDG sheds light on how it works and begins to demystify the creation of HTML dashboards.-I quite liked how the author laid out at the very beginning what this book wouldn't cover. While this book isn’t aimed at only Splunk experts, it is also not a primer on the basics and expects the reader to have solid Splunk experience.-Good flow starting at a holistic view, then breaking it down into building blocks of Splunk Knowledge Objects, and then building back up to the app creation itself and how to assemble the pieces. Along the way, snippets of automation and best practices are thrown in re-enforcing not just the how, but the why.-The author strikes a good balance between CLI interaction with the .conf files that powers Splunk under the hood with the GUI techniques for accomplishing many of the same tasks.-App packaging standards are often overlooked, but not here.A great addition to every Splunk admins bookshelf.

Amazon Verified review

NancyKafer Aug 03, 2015

This guide is very helpful for both beginning Splunk developers and advanced Splunk developers. The author does a nice job of building a good foundation by explaining the building blocks that will be used later to build advanced HTML dashboards. The examples are also very well laid out. I would recommend this guide to all Splunk developers.

Jack Coates Jul 08, 2015

Nicely done introduction into developing Splunk apps and add-ons, this is a solid entry point for anyone wanting to get started with big data in the Splunk ecosystem.

Ravi Shankar Jul 04, 2015

I purchased this book to learn more about Splunk Application Development. It did not disappoint me, author has covered this wide subject in a clean and concise way. The modular inputs chapter was well written as the splunk documentation was not very clear on this topic. Simple example get you to the concept quickly. I recommend this book for all starters who wants to learn app development using Splunk. Go for it.

uofakron Oct 02, 2015

Kindle eBookThe bad:This is what I found wrong, my perspective may be flawed, possibly from my inexperience with Splunk, it's just how I see it. If the points touched upon here are not valid, feel free to dismiss this review without prejudice. The book from its inception references data from Meh API (a wonderful website from the creators of woot, which provides a single shopping deal daily) in both text and screenshots, but to no avail provides instructions on how to obtain it/reference/ nor implement it as a data source …. I'm really wondering if I’m missing something, I went over the beginning of the book over and over again, looking for a data load explanation of where the meh API is being implemented, and I got nothing. Even went to publisher’s site and downloaded associated files … It’s like the section on how to consume the data from meh API is just plain missing. I looked online and saw that I am not the only person with same question, so either we are both "off ". If it’s actually there and we both missed it (still a possibility), better communication is needed to convey the meh API setup in the book , or the data setup for a book on data is just plain missing . Downloading the book's Splunk app is not enough. The downloadable app does not work out of the box on Ubuntu 14; maybe all Splunk apps don’t and need additional setup? Did I mention it doesn't work, shocker!, maybe it’s because I’m using 6.3 and it broke on the import, IDK... what I do know is there are no specific instructions in order to set the meh API up otherwise, and there is meh.py in the downloaded files not mentioned in the eBook.On a side note: poor choice in data sources because most likely the results won’t match up with the books, and they are functionally useless because meh items sold changes only once a day, so pie charts and such on a search of multiple sale items referenced is pointless when the deal of the day changes daily (the pie charts are all one color) … I am not seeing any meh documentation on pulling previous days json either. Had to chuckle when data from meh over last 30 days was mentioned. I'm like, "I don’t have that much time to let data accrue especially over a 150pg tech book I can get thru over a day or two…” The reader wanting to follow along with the tutorial is basically forced to fudge their own data. You will have to substitute daily deals in the book with current one, no biggie, but what about variety? You’re practically inserting duplicate records, and comparing the same daily deal to itself thousands of times over doesn’t do much for aggregation.I really question the publisher's reviewers for this book:IMHO, It’s obvious the publishing reviewers (the ones cited in the credits) did not either have the same book, or did not validate the tutorials. Examples:• How do you load the data from meh API? api.meh.com isn’t even searchable in the eBook.• Where's the poll extraction macro defined in summary indexing? I had to get it from the downloaded Splunk app…• Chapter 5 seems to be referencing examples (meh_clicks, visitors,etc…) introduced in chapter 6.It really makes wonder if I am missing something somewhere fundamental, it’s hard to believe that four people reviewed this book before it was published and these observations were not reconciled.To fellow readers:• For "theoretical learners" it’s fantastic (reading the book only), for "practical learners” (ones who want to follow along by practicing the tutorials), the tutorials involving meh data are disappointing.• Only buy the eBook if under $20...• Give up on trying to following the tutorials on your own, and just read it like a book, because you will not see the same results, nor will have complete instructions if you attempt to follow all the tutorials.• If you must, download and install the app from the publisher, it half works after you tweak it. Of course, it doesn’t work..., but it’s much easier to work with than the tutorials direction from the book. Don’t try to start one from scratch.To the author (IMHO):• Next time, get better reviewers, no one can check their own work and the ones credited in the book didn’t do their job, you didn’t fail, they failed you.• Please export the meh data that is referenced in the book, and distribute it from the book publisher’s website. It will help those people who are trying to double check their work based on the visualizations.• Also, besides distributing a comprehensive (non-working) Splunk app, the Splunk app should also be distributed per book chapter containing only the changes within the scope of the chapter.• Needs more content on actual application development, my goal after reading this book was professionalize my Splunk application development. It seems only a fraction of the book is dedicated to actual application development. What about delving head first into a SDK, if they are being utilized it’s not directly mentioned. I was disappointed when a data model was defined/discussed but no tutorial was given. What about custom control creation?If my perspective is wrong or miss-spoke, I am soooo sorry!The good:The book does have its good points, its not a complete mess...., ok, yes it is.However….I like:• The authors wording for Splunk explanations, it has helped me to understand the concepts much clearer. I found Splunk docs explanations as a hard read. I was also weary of digging in to the conf files before, and have found a new confidence during my reading.• The heuristics and best practices the book explains.• How the author displays the code/whatever in the topic then surgically dissects and thoroughly explains what each component does.If you read it like a book, and not attempt to follow the tutorials you should get your $18 (ebook) worth, still worth it…Again, if I am way off, or if anything mentioned that wasn’t there really was there under my nose, I apologize in advance. I know I ripped this book to shreds, I'm really hoping I'm wrong.

Splunk Developer?s Guide: Design, implement, and publish custom Splunk applications and add-ons following best practices

What do you get with Print?