About the Content Pack for Unix Dashboards and Reports
The Content Pack for Unix Dashboards and Reports provides reports, alerts, and dashboards for Linux and Unix management. You can monitor and troubleshoot Linux and Unix operating systems of any size, from anywhere.
The content pack includes the following components:
- Dashboards and reports for proactive operating system management.
- Knowledge objects that populate the dashboards and reports present in the content pack.
Content pack features
The Content Pack for Unix Dashboards and Reports contains all the dashboards from the Splunk App for Unix and Linux and also includes the following features:
Central Visibility into Operational Health
Get instant visibility into the operational health of your Unix and Linux environments. Organize your hosts by groups of services specific to your environment. Use NOC-like dashboards for central insight into problems and visualize resource consumption of selected systems for easy detection of outliers and anomalies.
Performance and Resource Utilization Analytics
Set multiple customizable thresholds for your CPU and memory utilization across your groups of hosts to easily spot trends and spikes in resource utilization in your infrastructure. Isolate problems with configurable statistical comparisons, using 42 important host and operating system (OS) metrics. Visualize trends and display side-by-side performance comparisons of the several hosts of interest to understand trends, establish baselines and optimize resource allocations. Quickly cross-compare CPU, RAM and disk historical capacity utilization across many different hosts to identify increased resource consumption.
Threshold-Based Alerts
Get real-time notifications of important events from your Unix and Linux environments using the threshold-based alerts in the content pack. Quickly assess the business impact of events and conduct remediation actions through insight into snapshots of various OS metrics around the time-specific alert fired. Compare the behavior of hosts in your systems and create long-term trends based on the alerts activity in your environment.
Installation
The Splunk App for Content Packs contains the Content Pack for Unix Dashboards and Reports. The content pack is automatically available once you install the Splunk App for Content Packs.
See the Install the Splunk App for Content Packs.
Content pack and Splunk Add-on for Unix and Linux installation locations
The Content Pack for Unix Dashboards and Reports relies on the Splunk Add-on for Unix and Linux. You must install both the Splunk Add-on for Unix and Linux and the content pack for the content pack to function.
Refer to the following table for installation location information for the Content Pack for Unix Dashboards and Reports and the Splunk Add-on for Unix and Linux:
Component | Search head / cluster | Indexer / cluster | Forwarder |
---|---|---|---|
Content Pack for Unix Dashboards and Reports | X | ||
Splunk Add-on for Unix and Linux | X | X | X |
Deployment requirements
Use the following table to ensure you are running the correct version of the Content Pack for Unix Dashboards and Reports, ITSI, IT Essentials Work, and the Splunk Add-on for Unix and Linux:
Content pack version | ITSI version | IT Essentials Work version | Splunk Add-on for Unix and Linux version |
---|---|---|---|
1.1.3 | 4.13.0 and higher | 4.13.0 and higher | 8.2.0, 8.3.0, 8.4.0 |
1.1.2 | 4.11.0 and higher | 4.11.0 and higher | 8.2.0, 8.3.0, 8.4.0 |
1.1.1 | 4.9.0 and higher | 4.9.0 and higher | 8.0.0, 8.1.0, 8.2.0, 8.3.0 |
1.1.0 | 4.9.0 and higher | 4.9.0 and higher | 8.0.0, 8.1.0, 8.2.0, 8.3.0 |
Migrate from the Splunk App for Unix and Linux to the Content Pack for Unix Dashboards and Reports
On March 13, 2022, the Splunk App for Unix and Linux will reach its end of life. After this date, Splunk will no longer maintain or develop this product. The functionality in this app is migrating to the Content Pack for Unix Dashboards and Reports.
If you are using the Splunk App for Unix and Linux and want to migrate to Content Pack for Unix Dashboards and Reports, see Migrate from the Splunk App for Unix and Linux to the Content Pack for Unix Dashboards and Reports.
Additional resources
- For ITSI deployment planning guidelines, see Plan your ITSI deployment in the Splunk IT Service Intelligence Install and Upgrade Manual.
- For ITSI version compatibility with Splunk Enterprise versions, see Splunk products version compatibility matrix in the Splunk Version Compatibility Matrix manual.
Release notes for the Content Pack for Unix Dashboards and Reports |
This documentation applies to the following versions of Content Pack for Unix Dashboards and Reports: 1.1.3
Feedback submitted, thanks!