Solved: Re: no unix folder under /opt/splunk/etc/apps

qubick · ‎03-05-2014

I installed "Splunk app for unix" by searching unix from "Find more apps" menu, based on the following instruction: http://answers.splunk.com/answers/50082/how-do-i-configure-a-splunk-forwarder-on-linux

And trying to copy /opt/splunk/etc/apps/unix according to the Step 8, because I hope my server(installed an indexer-instance of splunk) to be forwarded CPU/memory load (only two, not others) log data from other machines, but unable to find any folder named unix.

Is this the only way I could specify data I want them to be forwarded? Can I write a script into ~local/input (many from the forwarder not indexer) to specify data file related to CPU and memory load only, skipping copying ~/unix folder to the forwarder?

lukejadamec · ‎03-06-2014

It looks like that is an old post.

In the apps folder you will find 3 unix app components:

SA-nix

splunk_app_for_nix

Splunk_TA_nix

View solution in original post

lukejadamec · ‎03-06-2014

It looks like that is an old post.

In the apps folder you will find 3 unix app components:

SA-nix

splunk_app_for_nix

Splunk_TA_nix

lukejadamec · ‎03-06-2014

I expect you only need to transfer/copy the ones that contain inputs.conf files, but it would not hurt to transfer them all.

qubick · ‎03-06-2014

Thanks fount it, and does this mean I should copy all of those three to the forwarder. right?

no unix folder under /opt/splunk/etc/apps

Webinar Recap | Revolutionizing IT Operations: The Transformative Power of AI and ML ...

.conf24 | Registration Open!

ICYMI - Check out the latest releases of Splunk Edge Processor