Here is a dashboard I created in October 2023 as part of a Splunk (official) training course. This dashboard was created from a custom app and draws from access_combined filetypes in /var/log/weblogs/ on a Linux server VM. The dashboard features the following:
- A custom field extraction to reliably determine the user-agent.
- Insertion a lookup file (.csv) to allow analysis of lost revenue in near real-time.
- All panels are linked to the Global Time Picker to allow a quick overview of data for multiple time ranges.
Note that all panels were added to a custom dashboard template for aesthetic purposes. Creating relevant, useful data that looks GREAT is one of the things I like most about Splunk!
