How to get all system logs like CPU, disk, and mem...

ashokapex · ‎02-19-2016

Hi,

I want to get all system logs, like CPU, Disk, Memory and other system logs, from machine where my Splunk forwarder installed on a Linux machine.

Right now, I can only see CPU/DISK/Machine log from Splunk host machine, not from all my clients.

Can you help me? What do I have to set up?

Thanks

somesoni2 · ‎02-19-2016

You can install Splunk TA for Linux app on your forwarders (I believe you've this app installed on your Splunk servers already).

richgalloway · ‎02-19-2016

Are you running the Splunk for Unix app?

---
If this reply helps you, Karma would be appreciated.

ashokapex · ‎02-19-2016

Yes into Linux box.
I have input files like this :

[monitor:///apps/eqpricer/logs]
whitelist = stdout.log$|server.log$
index = myapp_pricer
sourcetype = myapp_log

How to get all system logs like CPU, disk, and memory from a Splunk forwarder machine?