I have the logs of my applications, and they're usually a bit volatile. The log switch doesn't stay there on the application for a long time, so Splunk can require that. It can take 15 days for the logs to be available to do some kind of research. I'm using Splunk to ingest application logs, create dashboards, and set up alerts.
Splunk Observability Cloud
SplunkExternal reviews
55 reviews
from
and
External reviews are not included in the AWS star rating for the product.
The dashboards are great, and we get solid visibility across our environment
What is our primary use case?
How has it helped my organization?
The biggest benefit of Splunk is that we can retain logs and correlate the data. Telemetry data has a huge impact because it's much easier to see everything.
Splunk has significantly reduced our mean resolution time. The workflow at my company involves application microservices applications running on the cloud. These logs are highly volatile, so they're only retained for three to five minutes, and we had to reproduce an issue to trace why it failed. That meant we had to do everything again to capture the log at the moment. Now, we have the data to analyze one or two hours.
What is most valuable?
Splunk's dashboards are great. The solution provides end-to-end visibility across my environment. Visualizing large amounts of data is easier because we can correlate the data from any target source.
What needs improvement?
The licensing model is expensive. We need to monitor the amount of data ingested because the cost is based on the data collected.
For how long have I used the solution?
I have used Splunk APM for three years now.
What do I think about the stability of the solution?
We have instances for production and development. I've never seen the production instance go down. Our development instance has gone down, but that's expected.
Which solution did I use previously and why did I switch?
I used tools like Elasticsearch, which is similar to Splunk. I've also used other observability tools like Grafana and Dynatrace, but they have different features.
What other advice do I have?
I rate Splunk APM 10 out of 10.
Improves operational efficiency and integrates very well
What is our primary use case?
We mostly work with developers. They run some pipelines, and they use Splunk as a platform to identify the errors, instead of themselves debugging the logs and understanding what the issue is. This is one side of the business. On the other side of the business, we use the Splunk database for frozen buckets where we archive the data.
We can easily integrate it with other tools for monitoring our entire IT data infrastructure. I also handle AppDynamics. We have integrated Splunk and AppDynamics. With one click, we can understand what the actual issue is. It brings down the time to resolve. We have had some good experiences.
How has it helped my organization?
It improves our operational efficiency every day. In my previous company, we had integrated it with ServiceNow. For defined alerting conditions, it could directly open up a ticket for the right team. We did not have to look into a thousand cases to understand a problem.
In terms of integrations, most of the plugins are already available. If a plugin is not available, even then it is pretty easy to integrate. There are multiple ways to integrate. You can use the REST API and just forward the data. It can be easily integrated.
It makes it easy to have end-to-end visibility in the cloud environment. There are multiple types of devices in an environment. You might have AWS, Microsoft Azure, or something else. It operates beautifully. It is easy to integrate. This is the best part.
I am in the banking industry. It helps to keep track of how well our application is performing when somebody tries to do a transaction. There are multiple pieces to it, and we keep track of everything. We have our own business dashboard that the top-tier leaders can look into. All the visibility is there because of it.
What is most valuable?
I find the monitoring console very helpful. With one click, I can see how we are performing, and at the same time, I can see what data is flowing.
What needs improvement?
The clustering part of indexes can be more refined.
They can cut down a bit at the monetary level for the long-time customers. We recently had a scenario where we were in discussions to see if there was any flexibility from Splunk's side.
For how long have I used the solution?
I have been using this solution for the past two years. I have also used it in my previous company.
What do I think about the scalability of the solution?
It is pretty scalable. I would rate it a nine out of ten for scalability.
Which solution did I use previously and why did I switch?
I have worked with Kibana and Logstash, but they are not comparable to this solution.
What's my experience with pricing, setup cost, and licensing?
It is expensive.
What other advice do I have?
Overall, I would rate it an eight out of ten.
Is easy to use, provides great visibility, and reduces our resolution time
What is our primary use case?
We use Splunk Infrastructure Monitoring to monitor our hybrid infrastructure.
We implemented Splunk Infrastructure Monitoring to help us monitor our infrastructure as we scale.
How has it helped my organization?
Splunk Infrastructure Monitoring is easy to use. It helps us quickly analyze how our infrastructure is performing across various services.
It helps with proper log management, allowing us to monitor our systems and analyze log data regularly. It also provides security operations capabilities for monitoring system health and ensuring uptime. We noticed these benefits immediately.
Our operational efficiency has been increased. It has improved our system health by monitoring the performance of data on servers, virtual machines, and containers, along with overall background processes.
Splunk Infrastructure Monitoring provides end-to-end visibility into our cloud-native environment. This is crucial because any data corruption can impact all the information we've deployed. It also aids in log management, offering parameters that extend its functionality as a comprehensive monitoring tool for CPU, memory usage, and network traffic.
It has helped reduce our mean time to detect by four hours.Our mean time to resolution has been reduced by two hours. By providing access to all our network parameters, it simplifies log ingestion through streamlined calculations.
Splunk Infrastructure Monitoring provides us with faster and more comprehensive insights into our infrastructure, allowing us to focus on critical business initiatives.
We saw the time to value immediately after deploying Splunk Infrastructure Monitoring.
What is most valuable?
The data collection from our VMs, containers, databases, and backend components is valuable.
What needs improvement?
Splunk Infrastructure Monitoring's data analytics can be improved by including suggestions for various types of continuous monitoring.
For how long have I used the solution?
I have been using Splunk Infrastructure Monitoring for three years.
What do I think about the stability of the solution?
The network uptime and monitoring are great.
What do I think about the scalability of the solution?
The scalability of Splunk Infrastructure Monitoring is excellent.
How are customer service and support?
The technical support is good.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We previously used Datadog but it doesn't offer network monitoring features like CPU utilization or overall server performance, which Splunk Infrastructure Monitoring does, so we switched.
Splunk Infrastructure Monitoring offers more functionality and visibility, making it a better choice for handling cloud architecture compared to Datadog.
How was the initial setup?
The initial setup was straightforward. One person was required for the deployment.
What other advice do I have?
I would rate Splunk Infrastructure Monitoring 9 out of 10.
Splunk Infrastructure Monitoring offers automated, continuous monitoring and diagnostics, delivering real-time reports for all your data with enhanced functionality compared to other solutions.
We have 200 users of Splunk Infrastructure Monitoring.
Splunk Infrastructure Monitoring is the best solution for monitoring networks, parameters, CPU, memory usage, and network traffic cases.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Offers end-to-end visibility, real-time monitoring, and distributed tracing, enabling organizations to optimize application performance and troubleshoot issues efficiently
What is our primary use case?
I use it for monitoring and troubleshooting the performance of cloud-native applications.
How has it helped my organization?
Providing comprehensive visibility throughout the environment, it monitors my system, enhances career performance, and offers insights into the user experience.
Troubleshooting and visualizing a cloud-native environment is made easy with Splunk APM. It provides complete visibility into software tools, swiftly monitoring business performance and applications.
It possesses the capability to conduct distributed tracing within our environment. This includes monitoring the speed of tracked access, extending from end users to the Internet, system, and network services, and supporting my software application. Consequently, it offers an end-to-end overview of potential bottlenecks.
Splunk APM has significantly enhanced our organizational efficiency. Initially, my responsibilities included tracking website application performance, managing applications, and handling license releases. Now, it provides real-time user monitoring, transforming the way I handle these tasks.
It significantly impacts our organization's telemetry data, improving operational performance and user experience. The platform provides insights into application performance and effective log management. Ensuring accurate tracking of all performance-related logs contributes to building up the application performance percentage with comprehensive data.
It contributed to a daily reduction of six hours in our mean time to resolve.
What is most valuable?
The most valuable features are troubleshooting and optimizing application performance.
Another value lies in the resilience and quick recovery capabilities offered by the SIEM. It enables thorough monitoring across our landscape, providing insights into the number of running software applications. The tool furnishes comprehensive information across microservices, significantly enhancing our proficiency.
What needs improvement?
Enhancing system availability and optimizing service performance are crucial. It is essential for the monitoring tool to deliver quick response times when generating analytical reports, instead of prolonged delays.
For how long have I used the solution?
I have been using it for two years.
What do I think about the stability of the solution?
It provides good stability capabilities.
What do I think about the scalability of the solution?
It has the capacity to scale. There are approximately two hundred users and one administrator that use it.
How are customer service and support?
I would rate its customer service and support eight out of ten.
How would you rate customer service and support?
Positive
How was the initial setup?
The initial setup was straightforward.
What about the implementation team?
The deployment process took six hours. During this time, a clear understanding was established regarding which technical applications—whether cloud-based, native, or others—needed monitoring and improved performance. These categories were identified in-house, with two individuals overseeing the process.
What was our ROI?
It allowed our IT staff to focus on other projects by freeing up their time. In total, it saved around four hours.
Which other solutions did I evaluate?
We evaluated Grafana.
What other advice do I have?
It can serve as an analytical application for enhancing performance, ensuring all dependencies are effectively addressed. Overall, I would rate it eight out of ten.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Enables users to forward logs to a centralized location and intuitive dashboard functionality
What is our primary use case?
I use Splunk primarily from a gateway operations perspective. I work on application support. As part of that support, we regularly monitor the application dashboards built in Splunk using the logs. I covered this earlier this month.
How has it helped my organization?
The real problem we were facing was that we were unable to get all of our logs into a single place. We have an on-premise application with multiple servers across different data centers, and we needed to be able to view all of the logs together in order to troubleshoot any problems. That's why we started using Splunk to forward all of our logs to a single location.
Moreover, Splunk APM gives us end-to-end visibility across our entire on-premise environment.
Another biggest benefit I've seen is the ability to quickly identify problems using Splunk alerting. We set up alerts against our application metrics, and this has helped us to resolve major issues much sooner. We can now identify problems as soon as they occur, which gives us time to take corrective action before they impact our users.
Splunk has reduced the amount of time our operations team spends investigating problems. This has freed up our engineers to focus on other tasks, such as improving our application performance and adding new features.
What is most valuable?
I like the fact that Splunk APM makes it easy to connect to the application database and run queries against the data. I also like the fact that Splunk APM allows me to use log forwarders to forward logs to a central location, where I can then build dashboards to view the data. The dashboards are probably my favorite feature of Splunk APM.
What needs improvement?
I've been using the Splunk query language, and it can be a bit time-consuming to set up the queries I need. I've had to look at a lot of community forums to find the filters I need, and it can be difficult to get the details I need.
For how long have I used the solution?
I have experience building dashboards and other things with Splunk APM.
I've been using Splunk APM for over a year now. As part of my job in application support, I regularly create and maintain dashboards for our applications using Splunk APM. I also use dashboards to create alerts based on certain metrics.
Moreover, I'm currently working on a project to create a new dashboard for our customer support application.
What do I think about the stability of the solution?
The stability of the solution is good because I have never had outages I have seen so far. In terms of usage, it's good in terms of availability.
How are customer service and support?
I haven't had to contact the support yet. We have a separate team that maintains and builds our relationship with Splunk, so they would be the ones to contact if we had any issues.
What about the implementation team?
The solution doesn't require any maintenance.
Which other solutions did I evaluate?
We used New Relic and AppDynamics before Splunk. AppDynamics was our APM tool, and I'm still using New Relic for monitoring Splunk. New Relic is great for log monitoring, and it's our main tool for internal application monitoring.
What other advice do I have?
With Splunk APM as an enterprise solution, various factors come into play. Right now, considerations include pricing and how they envision the solution to work for them. Some might want the solution to be cloud-based. It largely depends on the volumes they anticipate. Organizations must decide how much they're willing to invest, especially when comparing it to other investments they've made. With the current economic recession and organizations looking to cut costs, it's crucial to evaluate the volumes and aspects of Splunk that are most relevant to them.
Overall, I would rate the solution an eight out of ten.
User-friendly, offers good visibility through the logs, and helps identify issues in our environment
What is our primary use case?
We use Splunk Infrastructure Monitoring because it is a durable solution for our environment.
How has it helped my organization?
Splunk Infrastructure Monitoring is easy to use.
The dashboards are good.
Splunk Infrastructure Monitoring has helped improve our operational performance and efficiency.
Splunk Infrastructure Monitoring has helped reduce our MTTD by 90 percent.
Our MTTR is good thanks to Splunk Infrastructure Monitoring.
What is most valuable?
The most valuable feature is log reporting.
What needs improvement?
The price has room for improvement.
For how long have I used the solution?
I have been using Splunk Infrastructure Monitoring for five years.
What do I think about the stability of the solution?
I would rate the stability of Splunk Infrastructure Monitoring ten out of ten.
What do I think about the scalability of the solution?
Splunk Infrastructure Monitoring is scalable.
How are customer service and support?
I have used the technical support a few times and they were good.
How would you rate customer service and support?
Positive
What's my experience with pricing, setup cost, and licensing?
I would rate the price of Splunk Infrastructure Monitoring as an eight out of ten, with ten being the most expensive.
What other advice do I have?
I rate Splunk Infrastructure Monitoring ten out of ten.
Splunk Infrastructure Monitoring is a good service that provides visibility into our environment.
I recommend Splunk Infrastructure Monitoring to organizations for the logs that will help identify errors in their devices and assist them in resolving the issues.
One person is required to maintain Splunk Infrastructure Monitoring.
A stable tool with an easy setup phase that provides ease of use to its users
What is our primary use case?
In my company, we use Red Canary MDR to perform MITRE ATT&CK, after which I import the lot or whatever commands were run by Red Canary MDR to my Splunk system for further analysis. I use a type of real-time monitoring by Splunk.
What is most valuable?
The most valuable feature of the solution is the way it formats the raw data and helps make the understanding process much easier for the users. When you see the unformatted lots, it looks gibberish, especially for first-time users who may not understand a lot of things, but using Splunk Real User Monitoring (RUM) can make their job easier.
What needs improvement?
I had tried onboarding Splunk Real User Monitoring (RUM) on the cloud, but unfortunately, I couldn't onboard it on the cloud. It is an issue from my end that Splunk can try to improve.
For how long have I used the solution?
I have used Splunk Real User Monitoring (RUM) for over half a year. I use the solution with an enterprise license for a trial period of six months. I am a customer of Splunk.
What do I think about the stability of the solution?
It is a stable solution.
What do I think about the scalability of the solution?
Everyone in the SOC team, consisting of 50 to 100 people in my new company, uses Splunk Real User Monitoring (RUM).
How was the initial setup?
The initial setup of Splunk Real User Monitoring (RUM) was easy.
The solution is deployed on-premises.
Which other solutions did I evaluate?
My company decided to go with Splunk Real User Monitoring (RUM) over other solutions since it has the ability to format raw data making the job of the organization easier.
What other advice do I have?
I recommend the tool to those planning to use it since even though similar tools are available in the market, Splunk Real User Monitoring (RUM) is easier to use, especially for businesses.
I rate the overall solution a nine out of ten.
Splunk observability cloud review
What do you like best about the product?
Splunk observability cloud helps improve downtime of applications and improves reliability.
What do you dislike about the product?
It doesn't work for event based scenarios . And it has high performance overhead.seeting up is also costly.
What problems is the product solving and how is that benefiting you?
It has helped improve the incident response with instant visibility and real time alerts.
Good enterprise solution
What do you like best about the product?
Improve hybrid cloud performance.
Provide real time alerts.
Helping monitoring the system.
Provide real time alerts.
Helping monitoring the system.
What do you dislike about the product?
Configuration with DevOps.
Business activity monitoring.
Slow movement.
Business activity monitoring.
Slow movement.
What problems is the product solving and how is that benefiting you?
API monitoring
Real user monitoring
Helping server monitoring and infrastructure monitoring
Real user monitoring
Helping server monitoring and infrastructure monitoring
Splunk Observability Cloud
What do you like best about the product?
Splunk tool is best tool in IT feild. Specifically for SIEM Splunk just because they having both features of data analytics and security also and also most demanding tool for upcoming futures in IT.
What do you dislike about the product?
Complicated that other tool. And also if we fetching any detail from that tool, it's run different scripts which is not common for every time.
What problems is the product solving and how is that benefiting you?
User friendly and dashboard must be easily visible and easy to handle.
showing 41 - 50