Wednesday, May 21, 2008

Splunk goes virtual, unveils broad IT search capabilities for Citrix XenServer

Splunk, which provides indexing and search technology for IT infrastructures, this week made its move into the virtual realm with the announcement of Splunk for Citrix XenServer Management.

The San Francisco company says this is just its first foray into search support services for virtualization and that it will release similar applications for each of the leading server virtualization platforms in the near future. [Disclosure: Splunk is a sponsor of BriefingsDirect podcasts.]

The Splunk announcement comes during a Citrix cavalcade of news and developments, including the expected delivery of its desktop as a service portfolio.

While server virtualization provides significant efficiency and utilization improvement benefits to datacenters, it also brings complexity in troubleshooting glitches. Performance and capacity issues can arise when applications share the same physical host. With multiple virtual machines (VMs) sharing a pool of server, storage and network resources, changes to any one layer or VM could potentially affect others – and the applications they contain. Root cause analysis is even more of a challenge when instances of virtualized containers and runtimes pop in and out of use via dynamic provisioning.

Splunk indexing and search approach aims to provide a full view of IT-generated use data, not only from the hypervisor and VM, but from the server, guest operating system, applications, and the network. Splunk’s technology indexes data across all tiers of the infrastructure in near real-time. This allows operators and administrators to maintain a large, dynamic IT environment with fewer people, with higher automation and easier service performance management.

Splunk for Server Virtualization Management supports virtualization planning, workload optimization, performance monitoring, root cause analysis and log management, says the company.

The new product is available immediately. Users can download a free 30-day trial from the company's Web site.

Splunk has been in the news lately, and on Monday announced that communications provider BT has agreed to license Splunk's IT search platform technology to build a managed-security product that will allow customers to preserve 100 percent of the logs on a network.

Three weeks ago, the company unveiled Splunk for Change Management, an application to audit and detect configuration and changes, and Splunk for Windows, which indexes all data generated by Windows servers and applications.