公开(公告)号：US20200336390A1

公开(公告)日：2020-10-22

申请号：US16908564

申请日：2020-06-22

Applicant: Splunk Inc.

Inventor： Fang I. Hsiao ,  Clayton S. Ching ,  Michael R. Dickey ,  Vladimir A. Shcherbakov ,  Cary Glen Noel

IPC: H04L12/24 ,  H04L12/26

Abstract: The disclosed embodiments provide a system that facilitates the processing of network data. During operation, the system obtains a set of event streams from one or more remote capture agents over one or more networks, wherein the set of event streams comprises time-series event data generated from network packets captured by the one or more remote capture agents. Next, the system causes for display, within a graphical user interface (GUI), a first set of user interface elements, wherein the first set of user interface elements includes event stream information for an event stream in the set of event streams and a first graph of a metric associated with the time-series event data in the event stream. The system then updates the first graph in real-time with the time-series event data from the one or more remote capture agents.

公开(公告)号：US10523521B2

公开(公告)日：2019-12-31

申请号：US14610457

申请日：2015-01-30

Applicant: Splunk Inc.

Inventor： Fang I. Hsiao ,  Clayton S. Ching ,  Michael R. Dickey ,  Vladimir A. Shcherbakov ,  Nishant Teredesai ,  Cary Glen Noel

IPC: H04L12/24 ,  H04L12/26

Abstract: The disclosed embodiments provide a system that facilitates the processing of network data. During operation, the system causes for display, on a computer system, a graphical user interface (GUI) for obtaining configuration information for configuring the generation of time-series event data from network packets captured by one or more remote capture agents. Next, the system causes for display, in the GUI, a first set of user-interface elements for managing one or more ephemeral event streams that contain temporarily generated time-series event data from the network packets, wherein managing the one or more ephemeral event streams comprises modifying an end time for terminating the capture of time-series event data in an ephemeral event stream. The system then updates the configuration information based on input received through the first set of user-interface elements.

公开(公告)号：US10310708B2

公开(公告)日：2019-06-04

申请号：US15215430

申请日：2016-07-20

Applicant: Splunk Inc.

Inventor： Tristan Fletcher ,  Cary Glen Noel ,  Alok Bhide

IPC: G06F9/46 ,  G06F3/0482 ,  H04L12/24 ,  G06F3/0484 ,  G06F9/455 ,  G06F11/32 ,  H01L41/22 ,  G06F11/34

Abstract: In some embodiments, in response to the user selecting a first node in the tree to be pinned, the system displays a first detail panel for the first node, wherein the first detail panel displays state information for the first node, wherein the state information is frozen at the time of pinning. Moreover, in response to the user selecting a second node in the tree to be pinned, the system displays a second detail panel for the second node, wherein the second detail panel displays state information for the second node, wherein the state information is frozen at the time of pinning. Note that the first detail panel is displayed concurrently with the second detail panel to facilitate comparing state information between the first and second nodes.

公开(公告)号：US20190129578A1

公开(公告)日：2019-05-02

申请号：US15967472

申请日：2018-04-30

Applicant: SPLUNK INC.

Inventor： Tristan Fletcher ,  Cary Glen Noel ,  Alok Bhide

IPC: G06F3/0482 ,  G06F9/455 ,  G06F3/0484 ,  H01L41/22 ,  G06F11/32 ,  H04L12/24 ,  G06F11/34

Abstract: In some embodiments, in response to the user selecting a first node in the tree to be pinned, the system displays a first detail panel for the first node, wherein the first detail panel displays state information for the first node, wherein the state information is frozen at the time of pinning. Moreover, in response to the user selecting a second node in the tree to be pinned, the system displays a second detail panel for the second node, wherein the second detail panel displays state information for the second node, wherein the state information is frozen at the time of pinning. Note that the first detail panel is displayed concurrently with the second detail panel to facilitate comparing state information between the first and second nodes.

公开(公告)号：US10243818B2

公开(公告)日：2019-03-26

申请号：US15215191

申请日：2016-07-20

Applicant: Splunk Inc.

Inventor： Tristan Fletcher ,  Cary Glen Noel

IPC: G06F9/46 ,  H04L12/26 ,  G06F9/451 ,  G06T11/20 ,  H04L12/24 ,  G06F11/32 ,  G06F11/34 ,  H04L12/46 ,  H04L12/44 ,  G06F9/455 ,  G06F3/0482 ,  G06F3/0484 ,  H04L29/08

Abstract: A system that displays performance data for a computing environment. During operation, the system determines performance states for a plurality of entities that comprise the computing environment based on values of a performance metric for the entities. Next, the system displays the computing environment as a tree comprising nodes representing the plurality of entities and edges representing parent-child relationships between the plurality of entities. Then, for each parent node in the tree, the system determines counts of one or more performance states for descendants of the parent node in the tree. Finally, the system displays a graphical representation of the determined counts while displaying the parent node. In some embodiments, displaying the graphical representation of the determined counts includes displaying a circular ring comprising visually distinct sections associated with different performance states, wherein the visually distinct sections are sized proportionately with the determined counts for the associated performance states.

公开(公告)号：US10205643B2

公开(公告)日：2019-02-12

申请号：US15582132

申请日：2017-04-28

Applicant: SPLUNK INC.

Inventor： Tristan Fletcher ,  Cary Glen Noel

IPC: G06F9/46 ,  H04L12/26 ,  G06F9/455 ,  G06F11/32 ,  H04L12/46 ,  G06F11/34

Abstract: The disclosed embodiments relate to a system that displays performance data for a computing environment. During operation, the system first determines values for a performance metric for entities that comprise the computing environment. Next, the system displays the computing environment as a tree comprising nodes representing the entities and edges representing parent-child relationships between the entities. While displaying the tree, the system displays the child nodes for each parent in sorted order based on values of the performance metric associated with the child nodes.

公开(公告)号：US10204450B2

公开(公告)日：2019-02-12

申请号：US15967436

申请日：2018-04-30

Applicant: SPLUNK INC.

Inventor： Roy Arsan ,  Alexander Raitz ,  Clark Allan ,  Cary Glen Noel

IPC: G06T19/00 ,  G06T15/00 ,  G06T15/20

Abstract: Systems and methods according to various embodiments enable a user to view three-dimensional representations of data objects (“nodes”) within a 3D environment from a first person perspective. The system may be configured to allow the user to interact with the nodes by moving a virtual camera through the 3D environment. The nodes may have one or more attributes that may correspond, respectively, to particular static or dynamic values within the data object's data fields. The attributes may include physical aspects of the nodes, such as color, size, or shape. The system may group related data objects within the 3D environment into clusters that are demarked using one or more cluster designators, which may be in the form of a dome or similar feature that encompasses the related data objects. The system may enable multiple users to access the 3D environment simultaneously, or to record their interactions with the 3D environment.

公开(公告)号：US20180253898A1

公开(公告)日：2018-09-06

申请号：US15967436

申请日：2018-04-30

Applicant: SPLUNK INC.

Inventor： Roy Arsan ,  Alexander Raitz ,  Clark Allan ,  Cary Glen Noel

IPC: G06T19/00 ,  G06T15/00 ,  G06T15/20

CPC classification number: G06T19/20 ,  G06F9/50 ,  G06T11/206 ,  G06T15/005 ,  G06T15/04 ,  G06T15/20 ,  G06T15/205 ,  G06T19/00 ,  G06T19/003 ,  G06T2215/16

Abstract: Systems and methods according to various embodiments enable a user to view three-dimensional representations of data objects (“nodes”) within a 3D environment from a first person perspective. The system may be configured to allow the user to interact with the nodes by moving a virtual camera through the 3D environment. The nodes may have one or more attributes that may correspond, respectively, to particular static or dynamic values within the data object's data fields. The attributes may include physical aspects of the nodes, such as color, size, or shape. The system may group related data objects within the 3D environment into clusters that are demarked using one or more cluster designators, which may be in the form of a dome or similar feature that encompasses the related data objects. The system may enable multiple users to access the 3D environment simultaneously, or to record their interactions with the 3D environment.

公开(公告)号：US20160342454A1

公开(公告)日：2016-11-24

申请号：US15224654

申请日：2016-07-31

Applicant: Splunk Inc.

Inventor： Cary Glen Noel ,  Kirubakaran Pakkirisamy ,  Alex Raitz ,  Pierre Tsai

IPC: G06F11/07

Abstract: Embodiments are directed towards the visualization of machine data received from computing clusters. Embodiments may enable improved analysis of computing cluster performance, error detection, troubleshooting, error prediction, or the like. Individual cluster nodes may generate machine data that includes information and data regarding the operation and status of the cluster node. The machine data is received from each cluster node for indexing by one or more indexing applications. The indexed machine data including the complete data set may be stored in one or more index stores. A visualization application enables a user to select one or more analysis lenses that may be used to generate visualizations of the machine data. The visualization application employs the analysis lens to produce visualizations of the computing cluster machine data.

Abstract translation: 实施例针对从计算群集接收的机器数据的可视化。 实施例可以实现对计算集群性能，错误检测，故障排除，错误预测等的改进的分析。 单个集群节点可以生成包含关于集群节点的操作和状态的信息和数据的机器数据。 从每个集群节点接收机器数据，用于由一个或多个索引应用程序进行索引。 包括完整数据集的索引机器数据可以存储在一个或多个索引存储器中。 可视化应用程序使用户能够选择可用于生成机器数据可视化的一个或多个分析镜头。 可视化应用程序使用分析镜头来产生计算集群机器数据的可视化。

公开(公告)号：US20160147589A1

公开(公告)日：2016-05-26

申请号：US15011623

申请日：2016-01-31

Applicant: Splunk Inc.

Inventor： Cary Glen Noel ,  Kirubakaran Pakkirisamy ,  Alex Raitz ,  Pierre Tsai

IPC: G06F11/07 ,  G06F9/54

CPC classification number: G06F11/079 ,  G06F9/542 ,  G06F11/0709 ,  G06F11/0712 ,  G06F11/0721 ,  G06F11/0751 ,  G06F11/0769 ,  G06F11/0787 ,  G06N5/022 ,  G06N5/048

Abstract: Embodiments are directed towards the visualization of machine data received from computing clusters. Embodiments may enable improved analysis of computing cluster performance, error detection, troubleshooting, error prediction, or the like. Individual cluster nodes may generate machine data that includes information and data regarding the operation and status of the cluster node. The machine data is received from each cluster node for indexing by one or more indexing applications. The indexed machine data including the complete data set may be stored in one or more index stores. A visualization application enables a user to select one or more analysis lenses that may be used to generate visualizations of the machine data. The visualization application employs the analysis lens to produce visualizations of the computing cluster machine data.

Abstract translation: 实施例针对从计算群集接收的机器数据的可视化。 实施例可以实现对计算集群性能，错误检测，故障排除，错误预测等的改进的分析。 单个集群节点可以生成包含关于集群节点的操作和状态的信息和数据的机器数据。 从每个集群节点接收机器数据，用于由一个或多个索引应用程序进行索引。 包括完整数据集的索引机器数据可以存储在一个或多个索引存储器中。 可视化应用程序使用户能够选择可用于生成机器数据可视化的一个或多个分析镜头。 可视化应用程序使用分析镜头来产生计算集群机器数据的可视化。