Presented at SplunkLive! Munich 2018, gaining insight on both the experience, and the "why" behind the experience.

1. Monitoring the End User
Experience with Splunk
Gain insight on both the experience, and the
“why” behind the experience
Dirk Nitschke | Senior Sales Engineer
20 March 2018 | Munich

2. During the course of this presentation, we may make forward-looking statements regarding future events or
the expected performance of the company. We caution you that such statements reflect our current
expectations and estimates based on factors currently known to us and that actual events or results could
differ materially. For important factors that may cause actual results to differ from those contained in our
forward-looking statements, please review our filings with the SEC.
The forward-looking statements made in this presentation are being made as of the time and date of its live
presentation. If reviewed after its live presentation, this presentation may not contain current or accurate
information. We do not assume any obligation to update any forward looking statements we may make. In
addition, any information about our roadmap outlines our general product direction and is subject to change
at any time without notice. It is for informational purposes only and shall not be incorporated into any contract
or other commitment. Splunk undertakes no obligation either to develop the features or functionality
described or to include any such feature or functionality in a future release.
Splunk, Splunk>, Listen to Your Data, The Engine for Machine Data, Splunk Cloud, Splunk Light and SPL are trademarks and registered trademarks of Splunk Inc. in
the United States and other countries. All other brand names, product names, or trademarks belong to their respective owners. ©2018 Splunk Inc. All rights reserved.
Forward-Looking Statements

3. Monitoring App
Experience…
And the App

4. Complexity – Difficult Issues for Everyone
▶ Is the problem with the app, the network or the backend system?
▶ Why are my specialists all saying “it works” but the application is down?
▶ How does performance compare mobile vs. web vs. desktop?APP MANAGERS/
OPERATIONS
▶ How can I deliver new releases faster?
▶ How can I see how my applications are working in production?
▶ How can other developer, test and monitoring tools improve my coding?DEVELOPERS
▶ How do I ensure new releases don’t break critical apps?
▶ How can I do “full stack” monitoring easily?
▶ What changes will optimize application and infrastructure performance?DEVOPS, SRE
PERF MANAGER
▶ How are customers using my app? How is it impacting my business?
▶ Which features should I prioritize for future versions?
▶ Are my customers impacted by outages and performance issues?LINE OF BUSINESS

5. Infrastructure and Application Silos
Web Servers
Legacy
Systems
End Users Network/
Load Balancing
Messaging
Databases
Java, .NET, PHG, etc.
App Servers
Security
Virtualization,
Containers,
Servers, Storage

6. What Is Needed?
Web Servers
Legacy
Systems
End Users Network/
Load Balancing
Messaging
Databases
Java,.NET, PHG, etc.
App Servers
Security
Virtualization,
Containers,
Servers, Storage
KPIs, SLOs, service visualization, notable events affecting SLAs
Mobile intelligence, wire data, deep integration w/ AWS
Correlation with business data to enable context
Platform: Universal indexing + analytics of data across silos

7. ▶ Ingest data once – single source of truth
across teams
▶ Analyze machine data across entire stack
▶ Integrate data from other management tools
▶ Connect machine data to business services
▶ Identify root cause of problems quickly
▶ Apply best practices in analytics to predict
changes in reliability and service usage
Reliability Requires a Platform Approach
OTHER TEAMS
PRODUCT
MANAGERS/
BUSINESS OWNERS
DEVOPS, SRE
PERF MANAGER
APP MANAGERS/
OPERATIONS
DEVELOPERS

8. A Platform Approach for Application Performance Analytics
Network
InfrastructureLayer
Packet, Payload, Traffic,
Utilization, Perf
Storage
Utilization, Capacity,
Performance
Server
Performance, Usage,
Dependency
ApplicationLayer
User Experience
Usage, Response Time,
Failed Interactions
Byte Code Instrumentation
Usage, Experience,
Performance, Quality
Business Performance
Corporate Data, Intake,
Output, Throughput
Splunk Approach:
▶ Single repository for ALL data
▶ Data in original raw format
▶ Machine learning
▶ Simplified architecture
▶ Fewer resources to manage
▶ Collaborative approach
MACHINE
DATA

9. Apps for Application Monitoring
*ni
x
Splunk Stream,
Real User Monitoring
300+ IT Ops and App
Delivery Apps
and Add-Ons
Splunk for Mobile
Intelligence
Splunk Apps
for Amazon Web
Services and
Microsoft Exchange

10. ▶ Gain real-time insight into application
performance and customer
experience
▶ Attain visibility into cloud services
▶ Deliver immediate insights from
streaming network
▶ Network-based packet capture does
not require DBA or other admin tools
and doesn’t affect performance
Gaining Transaction Insight From Your Network
Splunk Stream

11. HTTP Event Collector – Agentless Fast Insight
▶ Immediate visibility to mobile app crashes
▶ Insight into mobile app use – MAU/DAU, device usage, network insight
▶ Transaction performance insight
curl -k https://<host>:8088/services/collector -H 'Authorization: Splunk <token>' -d
'{"event":"Hello Event Collector"}'
Applications IoT Devices
Agentless, direct data onboarding via a standard API
Scales to Millions of Events/Second

12. ▶ Immediate visibility to mobile app crashes
▶ Insight into mobile app use – MAU/DAU,
device usage, network insight
▶ Transaction performance insights
▶ Correlate mobile with other data types for
complete insight
Gaining Insight on Your Mobile Apps

13. Splunk IT Service Intelligence
Data-driven service monitoring and analytics
Splunk IT Service Intelligence
Time-Series Index
Platform for Operational Intelligence
Dynamic
Service Models
Schema-on-Read Data Model
Common
Information Model
At-a-Glance
Problem Analysis
Early Warning
on Deviations
Event Analytics
Simplified Incident
Workflows

14. Splunk: Application Performance Analytics
End Users
Networking/
Load-balancing Web Servers App Servers
Legacy
Systems
Messaging
Databases
Security
Virtualization,
Containers,
Servers, Storage
Java, .NET, PHP, etc.
Manage to KPIs, SLOs – isolate root case and service impact
Analytics for hybrid and cloud environments + microservices stacks
Full stack monitoring that integrates your APM tool’s data
Platform approach that spans technology and team silos

15. Splunk and APM
Section subtitle goes here

16. Traditional APM tools excel at… … but have critical limitations
▶ End user response time
(and alerting when performance is slow)
▶ Byte code instrumentation
(detecting what code causes bottlenecks)
▶ App server metrics
▶ Application mapping and transaction profiling
▶ Deploying quickly for base-level use cases
▶ “Full stack” monitoring
(including networks, load balancers, etc.)
▶ Finding the root cause
(that’s usually found in logs)
▶ Reactive (not predictive)
▶ Usually don’t store raw data indefinitely
▶ Advanced analytics
(prediction, anomalies, ML, etc.)
▶ Data access for multiple stakeholders
(LOBs, security, etc.)
APM Tools – Valuable, But Not Enough

17. ▶ Some, but not all of your apps are instrumented
▶ Other “off-the-shelf” apps can’t be instrumented with
traditional APM
▶ Non-instrumented parts of your stack can’t be “seen”
Covering APM “Blind Spots”
Without Splunk
Physical Server (Dell, HP, CISCO blades or servers)
Guest OS (Windows/Linux/*Nix)
Database (Oracle, SQL Server, MySQL)
Hypervisor (ESX, HyperV, Citrix)
Applications, business/mission services
App Server (WebLogic, Jboss EAP, WebSphere)
Web Server (Apache, TomCat)
SAN/NAS Storage (EMC, AppNet)
Network
AWS
Firewalls
Database (Oracle, SQL Server, MySQL)
SAN/NAS Storage (EMC, AppNet)
Network
Load Balancers
Legacy Environments (AS400, Mainframe, ESBs, others)
Akamai
Packaged Apps (SAP, PeopleSoft, etc)
Log Analysis (System, Application, Security, etc)
APMInstrumented-
ApplicationA
APMInstrumented-
ApplicationB
ApplicationD
(notAPMInstrumented)
ApplicationC
(notAPMInstrumented)
▶ End-to-end, holistic visibility to the complete service
▶ Insight across ALL data sources and applications
▶ PREDICTIVE analysis, before issues occur
With Splunk

18. ▶ Pull data from APM tools and provide
events to APM tools
▶ Gain insight into EUM, application
requests, app errors and correlate
with logs all in one platform
▶ Reduce the “clicks” between spotting
problems and finding root cause
▶ Forecast, predict and detect
anomalies in APM data
▶ Integrate triage with non-application
layers of the stack
APM as a Data Source for Splunk

19. APM Tools
▶ Splunk Add-on and App for New Relic
▶ Splunk Add-on and App for AppDynamics
▶ Dynatrace App (provided by Dynatrace)
Other Notable APM Apps
▶ Web Performance (based on boomerang.js)
▶ Splunk Mobile Intelligence (Splunk MINT)
▶ Splunk Stream
splunkbase.splunk.com
Splunk Apps for APM

20. Splunk Demo
Presented by Buttercup Splunker

21. © 2018 SPLUNK INC.
▶ Ensures continuous uptime thanks to real-time operational
insights into service and quality metrics
▶ Gains digital intelligence by comparing customer
engagement across Zillow sites
▶ Improves DevOps collaboration for faster release cycles
Gaining Real-Time Visibility
Into Site Operations
“Being part of the larger Splunk ecosystem is extremely valuable
to us. We couldn't replicate that if we tried to build something on
our own… We have given teams enough autonomy to create
their own solutions on top of the Splunk platform. It's all
predicated on the fact that Splunk is an enterprise-wide self-
service utility now within Zillow.”
– Director of Site Operations, Zillow
ONLINE SERVICES – IT OPERATIONS, APPLICATION DELIVERY

22. © 2018 SPLUNK INC.
▶ Improving website uptime with real-time notifications
▶ Quickly and reliably delivering application features
to users
▶ Uncovering business insights and improving the
customer experience
Democratizing Data to Ensure
Great Customer Experience
“I don’t believe there is any other product on the market
that is able to quickly bring together diverse data sets,
offer a powerful language to engineers for data analysis
and then ultimately deliver beautiful, visual, actionable
reports to the business users.”
– Vice President of Engineering, Yelp Reservations
TECHNOLOGY – IT OPERATIONS, BUSINESS ANALYTICS

23. © 2018 SPLUNK INC.
1. Transcend the silos
2. Ask any question of your data
3. Liberate your APM data
Key
Takeaways

24. Thank You!
Don't forget to rate this session on Pony Poll