Introduction to Cribl Stream

Auto-Generated Transcript (lightly edited for accuracy)

00:00 Introducing Cribl Stream. Cribl unlocks the value of machine data by giving you the freedom to make choices that best serve your business—without negative trade-offs. As your goals evolve, you have the freedom to change direction and choose a new path, whether it’s a new tool, a new destination, or a fresh start.

00:18 Cribl Stream is inserted into your logging or metrics environment between data sources and the tools you use, like Elasticsearch and Kibana. It can write a full-fidelity retention copy of all your data to inexpensive storage, including on-premises storage devices, object stores like Amazon S3, or archive solutions such as Amazon Glacier.

00:40 In addition, Stream can replay any of that data at any time. At the same time, Stream can deliver data to one or more tools of your choosing. With Stream’s pipeline capabilities, you can shape and transform data before it’s delivered.

00:55 Need metrics from your firewall logs for a dashboard? Use Stream’s metrics capabilities to aggregate data in Stream and deliver only the metrics you need. Tired of wasteful logging practices? By using Stream’s data transformation capabilities, customers commonly reduce the amount of data ingested into their analysis systems by around 30%, resulting in significant infrastructure savings.

01:16 With a full-fidelity copy of your data always available—and the ability to replay it back into your tools—you can be as aggressive as you want when reducing log size.

01:32 Want to enrich your data with GeoIP lookups or other datasets, such as threat intelligence feeds? Stream’s enrichment capabilities have you covered. Need to secure your logs by redacting or encrypting personally identifiable information? Stream can do that too. It’s like a Swiss Army knife for your data.