Talk Details
Simplifying your regex environment
There are plenty of Splunk instances that use redundant regexes or separate regexes for each individual field needed. In many cases these can be reduced so that the CPU usage on search (and even ingest) can be reduced.
Speaker:
Links:
| Video | PowerPoint | Github |