Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

Splunk Enterprise

Splunk | 9.4.3

Linux/Unix, Amazon Linux 2023 - 64-bit Amazon Machine Image (AMI)

Reviews from AWS customer

16 AWS reviews

External reviews

445 reviews
from and

External reviews are not included in the AWS star rating for the product.

3-star reviews ( Show all reviews )

    John M.

Worth its weight in gold

  • June 28, 2017
  • Review provided by G2

What do you like best about the product?
Ability to track trends, create alerts and notifications, share data, ingest data, and get the whole team up to speed.
What do you dislike about the product?
Cost. Learning curve (powerful, but challenging)
What problems is the product solving and how is that benefiting you?
Monitoring, support, dashboard, notifications, reporting.
The cost is really high, but we figured if we used its fully capability, we would require 1 fewer helpdesk person. It took awhile to get the various reports and dashboards set up, but we now have complete visibility into our business, with full history and analytics that anyone in the company can dive into.

    Noam B.

Works as advertised, but not easy or simple.

  • April 04, 2016
  • Review provided by G2

What do you like best about the product?
I like the ability to create charts & alerts. Searching logs works nicely and you can find what you are looking for, assuming that you wrote your logs in a key-value manner which splunk can index efficiently.
What do you dislike about the product?
I dislike the query language. I never found it intuitive. I felt it is reinventing the wheel, in a bad way. Also it is far from realtime when there is a lot of data. We have got to as much as 30 minutes delay in seeing the service is having a major problem.
What problems is the product solving and how is that benefiting you?
CloudOn provided on-demand remote Microsoft Office to tablets and mobile phones, using a patented proprietary video compression protocol. The service was running on the cloud and logs were collected from all nodes and forwarded to Splunk.

DOV-E is enabling any speaker to engage any mobile device using ultrasonic sound waves encoded with data. DOV-E can collect and index data about message receptions including time, location, user and message content.
Recommendations to others considering the product:
You will need to rewrite your logs in a way that Splunk likes to index, otherwise you will not be able to search it easily. We have seen it crashed a number of times under high load. You will need to have someone responsible for starting it back up and managing expiring licenses, disk-out-of-space problems etc.

    AWS Admins

Good but not ready for Production

  • June 03, 2015
  • Review from a verified AWS customer

I liked the fact that there was a splunk AMI and you can spin up splunk really fast. I was able to build an instance and be up in a matter of minutes. The issues I have with the AMI is that there is currently no support for the new C4 instances. I wanted to build a beefy splunk server with the latest CPUs since searches are CPU heavy and I'm not able to do that now. I also noticed that the AMI does not address disabling Transparent Huge Pages which splunk recommends. This can cause a 30% performance degradation. http://docs.splunk.com/Documentation/Splunk/6.2.3/ReleaseNotes/SplunkandTHP

So, because I couldn't use the instance I wanted, I can't really use this AMI for my needs. I can use it for testing no problem though. The THP issues is not that big because you can disable it easy enough but if splunk is touting this AMI as a recommended configuration I would like to see the THP addressed since it causes performance issues.

showing 11 - 13