Item: Splunk Enterprise
Rating: 5
Author: Farid Sarwari

Use Cases and Deployment Scope

Used to analyze web logs to find anomalies. It was supposed to make easier to for business to understand impact of various types of campaigns. It was also meant to find problems that may occur as part of application failure or fraud, or phishing attempts. Another application it was meant for is to help IT staff to diagnose problems by having central access for all logs.

Pros and Cons

Analyze weblogs and extract key words
Visualize increase or decrease usage
Drill down capabilities

There should be alternate licensing models for companies with large data
Better compression of data stored on disk
Lesser penalties for over usage

Return on Investment

Tried splunk with free license and it was not enough to load all our data.
Picking a subset of data that due to license restrictions does not make sense.

Alternatives Considered

Log Insight, graylog2, logstash/kibana.

Likelihood to Renew

Again the reason is price. It would not be justifiable for us to get a license to cover all our logs. Filtering out logs to avoid license costs or using alternate applications for less important logs doesn't make sense.

Likelihood to Recommend

Price is the biggest draw back for us. We could not justify the cost especially when there are alternate products that cost less and even free products that do most of what we want out of Splunk.

Splunk, the sexy, sporty car that I can't afford.

Overall Satisfaction with Splunk