Scribd Logo
Upload

Welcome to Scribd!

  • CRIBL

    Uploaded by

    saphana9800
    51 views9 pages
    This document provides an overview of the course content on Cribl including sections on deployment types, configuration files, access management, event processing, data sources, destinations, functions, expressions, techniques, troubleshooting and more. It discusses key concepts, architectures, capabilities and use cases for Cribl LogStream.

    Original Description:

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document provides an overview of the course content on Cribl including sections on deployment types, configuration files, access management, event processing, data sources, destinations, functions, expressions, techniques, troubleshooting and more. It discusses key concepts, architectures, capabilities and use cases for Cribl LogStream.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    51 views9 pages

    CRIBL

    Uploaded by

    saphana9800
    This document provides an overview of the course content on Cribl including sections on deployment types, configuration files, access management, event processing, data sources, destinations, functions, expressions, techniques, troubleshooting and more. It discusses key concepts, architectures, capabilities and use cases for Cribl LogStream.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 9

    COURSE CONTENT ON CRIBL

    INTRODUCTION
    About Cribl LogStream
    Basic Concepts
    DEPLOYMENT
    Deployment Types
    Single-Instance Deployment
    Distributed Deployment
    Splunk App Deployment
    Kubernetes/Helm Deployment
    K8s Leader Deployment
    K8s Worker Deployment
    K8s Master Deployment
    Docker Deployment
    Cribl. Cloud Deployment
    Sizing and Scaling
    Config Files
    cribl.yml
    breakers.yml
    certificates.yml
    groups.yml
    inputs.yml
    instance.yml
    jobs.yml
    job-limits.yml
    licenses.yml
    limits.yml
    COURSE CONTENT ON CRIBL
    logger.yml
    mappings.yml
    messages.yml
    outputs.yml
    parsers.yml
    regexes.yml
    roles.yml
    samples.yml
    schemas.yml
    Access Management
    Authentication
    Local Users
    Roles
    Securing
    Version Control
    Persistent Queues
    Monitoring
    Internal Metrics
    Notifications
    Upgrading
    Uninstalling
    WORKING WITH DATA
    Event Model
    Event Processing Order
    Routes
    Pipelines
    COURSE CONTENT ON CRIBL
    Data Onboarding
    Functions
    Auto Timestamp
    Aggregations
    CEF Serializer
    Clone
    Code
    Comment
    DNS Lookup
    Drop
    Dynamic Sampling
    Eval
    Flatten
    GeoIP
    Grok
    JSON Unroll
    Lookup
    Mask
    Numerify
    Parser
    Publish Metrics
    Regex Extract
    Redis
    Regex Filter
    Rename
    Rollup Metrics
    COURSE CONTENT ON CRIBL
    Sampling
    Serialize
    Suppress
    Tee
    Trim Timestamp
    Unroll
    XML Unroll
    Prometheus Publisher (Deprecated)
    Reverse DNS (deprecated)
    Collector Sources
    Filesystem/NFS
    Azure Blob Storage
    Google Cloud Storage
    S3 414 Script
    REST / API Endpoint
    Scheduling and Running
    Job Limits
    Sources
    Syslog
    Splunk TCP
    Splunk HEC
    Amazon Kinesis Firehose
    Amazon Kinesis Streams
    Amazon SQS
    Amazon S3
    Google Cloud Pub/Sub
    COURSE CONTENT ON CRIBL
    Azure Event Hubs
    Azure Blob Storage
    Office 365 Services
    Office 365 Activity
    Office 365 Message Trace
    TCP JSON
    TCP (Raw)
    HTTP/S (Bulk API)
    Raw HTTP/S
    Elasticsearch API
    Kafka 543 Metrics
    SNMP Trap
    Prometheus Remote Write
    Prometheus Scraper
    Grafana
    Loki
    AppScope
    Datagen
    Cribl Internal
    Destinations
    Output Router
    Splunk Single Instance
    Splunk Load Balanced
    Splunk HEC
    Amazon S3 Compatible Stores
    Amazon Kinesis Streams
    COURSE CONTENT ON CRIBL
    Amazon CloudWatch Logs
    Amazon SQS
    Azure Blob Storage
    Azure Monitor Logs
    Azure Event Hubs
    Google Chronicle
    Google Cloud Storage
    Google Cloud Pub/Sub
    StatsD
    StatsD Extended
    Graphite
    TCP JSON
    Syslog
    Filesystem/NFS
    Kafka
    Elasticsearch
    Honeycomb
    New Relic
    SNMP Trap
    InfluxDB
    MinIO
    Wavefront
    SignalFx
    Sumo Logic
    Datadog
    Prometheus
    COURSE CONTENT ON CRIBL
    Grafana Cloud
    Loki
    Webhook
    DevNull
    Default
    Packs
    Data P review
    Securing Data
    Encryption
    Decryption
    Scripts
    Using Datagens
    CLI Reference
    EXPRESSION REFERENCE
    Introduction to Expression Syntax
    Cribl Expressions
    KNOWLEDGE
    Regex Library
    Grok Patterns Library
    Event Breakers
    Lookups Library
    Parsers Library
    Schema Library
    Global Variables Library
    TECHNIQUES & TIPS
    Tips and Tricks
    COURSE CONTENT ON CRIBL
    Ingest-time Fields
    Ingest-time Lookups
    Sampling
    Access Logs:Apache, ELB, CDN, S3, etc.
    Firewall Logs: VPC Flow Logs, Cisco ASA, Etc.
    Masking and Obfuscation
    Managing Large Lookups
    Lookups as Filters for Masks
    Lookups and Regex Magic
    Regex Filtering
    Encrypting Sensitive Data
    Syslog Data Reduction
    Splunk to Elasticsearch
    Reducing Windows XML Events
    Using REST/API Collectors
    System Proxy Configuration
    AWS Cross-Account Data Collection
    OpenID + Azure AD Configuration
    SSO/Okta Configuration
    Code Function Examples
    TROUBLESHOOTING
    Diagnosing Issues
    Working with Cribl Support
    Known Issues
    Common Errors and Warnings
    Git Push Errors
    COURSE CONTENT ON CRIBL
    Git Remote Repos.

    You might also like