Getting Data In
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to get all system logs like CPU, disk, and memory from a Splunk forwarder machine?

ashokapex
Explorer
‎02-19-2016 08:02 AM

Hi,

I want to get all system logs, like CPU, Disk, Memory and other system logs, from machine where my Splunk forwarder installed on a Linux machine.

Right now, I can only see CPU/DISK/Machine log from Splunk host machine, not from all my clients.

Can you help me? What do I have to set up?

Thanks

0 Karma
Reply

somesoni2
Revered Legend
‎02-19-2016 09:08 AM

You can install Splunk TA for Linux app on your forwarders (I believe you've this app installed on your Splunk servers already).

https://splunkbase.splunk.com/app/833/#/overview

Reply

richgalloway
SplunkTrust
SplunkTrust
‎02-19-2016 08:35 AM

Are you running the Splunk for Unix app?

---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply

ashokapex
Explorer
‎02-19-2016 08:40 AM

Yes into Linux box.
I have input files like this :

[monitor:///apps/eqpricer/logs]
whitelist = stdout.log$|server.log$
index = myapp_pricer
sourcetype = myapp_log

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Decoded: Service Maps vs Service Analyzer Tree View vs Flow Maps

It’s Monday morning, and your phone is buzzing with alert escalations – your customer-facing portal is running ...

What’s New in Splunk Observability – September 2025

What's NewWe are excited to announce the latest enhancements to Splunk Observability, designed to help ITOps ...

Fun with Regular Expression - multiples of nine

Fun with Regular Expression - multiples of nineThis challenge was first posted on Slack #regex channel ...