Back from our road trip to San Francisco, CA for Splunk’s First (and very successful) Worldwide User Conference, SplunkTalk continues. On today’s show, we cover questions about “baking Splunk in to gold images”, sending SNMP traps as alerts, and improving on Splunk’s multiline event handling. News, views, and Jeff’s bone dry sense of humor, enjoy this week’s episode.

If you haven’t yet been introduced to Splunk Answers, you’d better go and see what all the fuss is about. We started Answers to provide a fast, efficient medium for users to ask questions and get answers, and it has been a raging success. It empowers our users to help each other out on common – and some not-so-common – obstacles to success.

I was originally going to title this, “So a guy walks in to a search engine and…” but decided on a more boring title that was a bit more descriptive and easier to find. I’ll save that for another post. Yesterday, (August 18, 2010) I was on the phone with some folks evaluating Splunk and they asked me a ton of questions. Many of them were about architecture, but some were about search. They asked “how to I make Splunk look a bit more like the Windows Event Viewer?”, “how do I do alerts in a smarter way?”, and “are there ways to make search faster and more efficient?”