Monitoring Splunk
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

What is the best app to monitor Linux in Splunk?

sandeepmakkena
Contributor
‎10-03-2018 01:14 PM

This is my 1st time working with apps, so I have few questions.

  1. We have a forwarder installed on our host forwarding data to a different index. I want to install Nmon or *nix to monitor Linux systems. What would be the process or steps to get it done ? (I am not sure search head is on the same server with Indexer or not)

  2. Which one of the apps are better (right now we are looking only for dashboards)?

  3. Are they free or do they have license cost ?

Tags (1)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

gjanders
SplunkTrust
SplunkTrust
‎10-03-2018 04:11 PM

If your using Splunk 7 or newer try the metricator app for the search heads
Install Technical Addon for the Metricator application for Nmon anywhere you want metrics from (for example search heads, universal forwarders, et cetera)
Support Addon for the Metricator application for Nmon is for the indexers/index setup

Documentation here

The *nix TA doesn't use metrics but can also gather stats/has basic dashboards, Splunk Add-on for Linux has dashboards for metrics and assumes you collect stats via collectd or similar.

Have a read and decide which one you want, they are all free so install and test them and then decide...
Here's the link for the Nix TA: Splunk Add-on for Unix and Linux

-
Alerts for Splunk Admins, Version Control for Splunk, Decrypt2 VersionControl For SplunkCloud

View solution in original post

Reply
Solved! Jump to solution
Solution

gjanders
SplunkTrust
SplunkTrust
‎10-03-2018 04:11 PM

If your using Splunk 7 or newer try the metricator app for the search heads
Install Technical Addon for the Metricator application for Nmon anywhere you want metrics from (for example search heads, universal forwarders, et cetera)
Support Addon for the Metricator application for Nmon is for the indexers/index setup

Documentation here

The *nix TA doesn't use metrics but can also gather stats/has basic dashboards, Splunk Add-on for Linux has dashboards for metrics and assumes you collect stats via collectd or similar.

Have a read and decide which one you want, they are all free so install and test them and then decide...
Here's the link for the Nix TA: Splunk Add-on for Unix and Linux

-
Alerts for Splunk Admins, Version Control for Splunk, Decrypt2 VersionControl For SplunkCloud
Reply
Get Updates on the Splunk Community!

Splunk Mobile: Your Brand-New Home Screen

Meet Your New Mobile Hub  Hello Splunk Community!  Staying connected to your data—no matter where you are—is ...

Introducing Value Insights (Beta): Understand the Business Impact your organization ...

Real progress on your strategic priorities starts with knowing the business outcomes your teams are delivering ...

Enterprise Security (ES) Essentials 8.3 is Now GA — Smarter Detections, Faster ...

As of today, Enterprise Security (ES) Essentials 8.3 is now generally available, helping SOC teams simplify ...