https://community.splunk.com/t5/Splunk-Search/splunk-query/m-p/66857#M16681 <P>Will the Unix application work on a universal forwarder? The objective is to have Splunk perform a few simple remote queries.</P> Tue, 07 Feb 2012 19:15:20 GMT DTERM 2012-02-07T19:15:20Z https://community.splunk.com/t5/Splunk-Search/splunk-query/m-p/66855#M16679 <P>I found the following Splunk query that tells the local disk space. Is there a similar command that I could use to query stats like diskspace from another host. (I know how to do this through SSH, however I need the splunk'd solution.) Thanks!</P> <P>[root@splunk bin]# ./splunk search "sourcetype=df | multikv | dedup host,Filesystem | rex field=UsePct \"(?<USAGE>\d+)\"" admin:changeme</USAGE></P> <P>/dev/sda3 ext4 46G 6.1G 37G 15% /</P> <P>/dev/sda1 ext4 248M 47M 189M 20% /boot</P> Tue, 07 Feb 2012 18:30:51 GMT https://community.splunk.com/t5/Splunk-Search/splunk-query/m-p/66855#M16679 DTERM 2012-02-07T18:30:51Z https://community.splunk.com/t5/Splunk-Search/splunk-query/m-p/66856#M16680 <P>You could put a forwarder on said 'remote' server, install the *NIX app on it and have it feed your indexer File System usage information via the sourcetype 'df'...</P> <P>Then, you could see all of your servers at the same time...just sayin...</P> Tue, 07 Feb 2012 19:09:53 GMT https://community.splunk.com/t5/Splunk-Search/splunk-query/m-p/66856#M16680 Lamar 2012-02-07T19:09:53Z https://community.splunk.com/t5/Splunk-Search/splunk-query/m-p/66857#M16681 <P>Will the Unix application work on a universal forwarder? The objective is to have Splunk perform a few simple remote queries.</P> Tue, 07 Feb 2012 19:15:20 GMT https://community.splunk.com/t5/Splunk-Search/splunk-query/m-p/66857#M16681 DTERM 2012-02-07T19:15:20Z https://community.splunk.com/t5/Splunk-Search/splunk-query/m-p/66858#M16682 <P>Indeed.</P> <P>Please take a look at this thread for possible pitfalls:</P> <P><A href="http://splunk-base.splunk.com/answers/13202/splunk-42-universal-forwarder-nix-app-install-via-cli">http://splunk-base.splunk.com/answers/13202/splunk-42-universal-forwarder-nix-app-install-via-cli</A></P> Tue, 07 Feb 2012 19:28:43 GMT https://community.splunk.com/t5/Splunk-Search/splunk-query/m-p/66858#M16682 Lamar 2012-02-07T19:28:43Z https://community.splunk.com/t5/Splunk-Search/splunk-query/m-p/66859#M16683 <P>Perfect!! Thanks so much!!</P> Wed, 08 Feb 2012 14:02:16 GMT https://community.splunk.com/t5/Splunk-Search/splunk-query/m-p/66859#M16683 DTERM 2012-02-08T14:02:16Z