https://community.splunk.com/t5/All-Apps-and-Add-ons/Monitor-remote-Unix-directory-log-file/m-p/164443#M15500 <P>Thanks for your answer.</P> <P>I think from Universal Forwarder will push the data from Unix machine to Splunk, if this happen, then will it hurt any network resources/network traffic. I need to monitor for every 2Mins of interval.</P> <P>From Splunk cant we look/login into the other Unix/Windows server ?</P> <P>Regards</P> Tue, 25 Feb 2014 09:00:47 GMT Ravi_c 2014-02-25T09:00:47Z https://community.splunk.com/t5/All-Apps-and-Add-ons/Monitor-remote-Unix-directory-log-file/m-p/164441#M15498 <P>Hi,</P> <P>Im new to splunk, I need to check the remote unix directory logfiles,</P> <P>I need this approach as described below,<BR /> How can I look into that server, with ssh servername/password<BR /> Goto Specified path like /User/bin/MyAppl/Logs<BR /> Take the latest log file<BR /> Search for any ERROR like Java error.</P> <P>If any error is there then<BR /> send a mail to the mail id.</P> Tue, 25 Feb 2014 07:57:27 GMT https://community.splunk.com/t5/All-Apps-and-Add-ons/Monitor-remote-Unix-directory-log-file/m-p/164441#M15498 Ravi_c 2014-02-25T07:57:27Z https://community.splunk.com/t5/All-Apps-and-Add-ons/Monitor-remote-Unix-directory-log-file/m-p/164442#M15499 <P>Hi Ravi_c,</P> <P>this is not quiet the way it works. <BR /> First you need to understand how Splunk works, take a deep look at the docs about <A href="http://docs.splunk.com/Documentation/Splunk/latest/Data/WhatSplunkcanmonitor">getting data in</A>. After that read the docs about the <A href="http://docs.splunk.com/Documentation/Splunk/6.0.2/Forwarding/Introducingtheuniversalforwarder">universal forwarder</A>. When done with that, learn how to <A href="http://docs.splunk.com/Documentation/Splunk/latest/SearchTutorial/WelcometotheSearchTutorial">search</A> for the added data and finally create some <A href="http://docs.splunk.com/Documentation/Splunk/latest/Alert/Aboutalerts">alerts</A> to get you an email if something is error'ing ...</P> <P>hope this helps to get you started ...</P> <P>cheers, MuS</P> Tue, 25 Feb 2014 08:19:59 GMT https://community.splunk.com/t5/All-Apps-and-Add-ons/Monitor-remote-Unix-directory-log-file/m-p/164442#M15499 MuS 2014-02-25T08:19:59Z https://community.splunk.com/t5/All-Apps-and-Add-ons/Monitor-remote-Unix-directory-log-file/m-p/164443#M15500 <P>Thanks for your answer.</P> <P>I think from Universal Forwarder will push the data from Unix machine to Splunk, if this happen, then will it hurt any network resources/network traffic. I need to monitor for every 2Mins of interval.</P> <P>From Splunk cant we look/login into the other Unix/Windows server ?</P> <P>Regards</P> Tue, 25 Feb 2014 09:00:47 GMT https://community.splunk.com/t5/All-Apps-and-Add-ons/Monitor-remote-Unix-directory-log-file/m-p/164443#M15500 Ravi_c 2014-02-25T09:00:47Z https://community.splunk.com/t5/All-Apps-and-Add-ons/Monitor-remote-Unix-directory-log-file/m-p/164444#M15501 <P>universal forwarder is continuously monitoring any input you did configure. Network usage can be limited for the forwarder with the [thruput] maxKBps = <INTEGER> in limits.conf.<BR /> Remote SSH login is not possible by using Splunk, but you could either mount this remote share locally or create a scripted input to get the files needed over scp/rsync.</INTEGER></P> Tue, 25 Feb 2014 09:09:26 GMT https://community.splunk.com/t5/All-Apps-and-Add-ons/Monitor-remote-Unix-directory-log-file/m-p/164444#M15501 MuS 2014-02-25T09:09:26Z