Content Pack for Unix Dashboards and Reports

Content Pack for Unix Dashboards and Reports

This documentation does not apply to the most recent version of Content Pack for Unix Dashboards and Reports. For documentation on the most recent version, go to the latest release.

About the Content Pack for Unix Dashboards and Reports

The Content Pack for Unix Dashboards and Reports provides reports, alerts, and dashboards for Linux and Unix management. You can monitor and troubleshoot Linux and Unix operating systems of any size, from anywhere.

The content pack includes the following components:

  • Dashboards and reports for proactive operating system management.
  • Knowledge objects that populate the dashboards and reports present in the content pack.

Content pack features

The Content Pack for Unix Dashboards and Reports contains all the dashboards from the Splunk App for Unix and Linux and also includes the following features:

Central Visibility into Operational Health

Get instant visibility into the operational health of your Unix and Linux environments. Organize your hosts by groups of services specific to your environment. Use NOC-like dashboards for central insight into problems and visualize resource consumption of selected systems for easy detection of outliers and anomalies.

Performance and Resource Utilization Analytics

Set multiple customizable thresholds for your CPU and memory utilization across your groups of hosts to easily spot trends and spikes in resource utilization in your infrastructure. Isolate problems with configurable statistical comparisons, using 42 important host and operating system (OS) metrics. Visualize trends and display side-by-side performance comparisons of the several hosts of interest to understand trends, establish baselines and optimize resource allocations. Quickly cross-compare CPU, RAM and disk historical capacity utilization across many different hosts to identify increased resource consumption.

Threshold-Based Alerts

Get real-time notifications of important events from your Unix and Linux environments using the threshold-based alerts in the content pack. Quickly assess the business impact of events and conduct remediation actions through insight into snapshots of various OS metrics around the time-specific alert fired. Compare the behavior of hosts in your systems and create long-term trends based on the alerts activity in your environment.

Installation

The Splunk App for Content Packs contains the Content Pack for Unix Dashboards and Reports. The content pack is automatically available once you install the Splunk App for Content Packs.

See the Install the Splunk App for Content Packs.

Content pack and Splunk Add-on for Unix and Linux installation locations

The Content Pack for Unix Dashboards and Reports relies on the Splunk Add-on for Unix and Linux. You must install both the Splunk Add-on for Unix and Linux and the content pack for the content pack to function.

Refer to the following table for installation location information for the Content Pack for Unix Dashboards and Reports and the Splunk Add-on for Unix and Linux:

Component Search head / cluster Indexer / cluster Forwarder
Content Pack for Unix Dashboards and Reports X
Splunk Add-on for Unix and Linux X X X

Deployment requirements

Use the following table to ensure you are running the correct version of the Content Pack for Unix Dashboards and Reports, ITSI, IT Essentials Work, and the Splunk Add-on for Unix and Linux:

Content pack version ITSI version IT Essentials Work version Splunk Add-on for Unix and Linux version
1.1.3 4.13.0 and higher 4.13.0 and higher 8.2.0, 8.3.0, 8.4.0
1.1.2 4.11.0 and higher 4.11.0 and higher 8.2.0, 8.3.0, 8.4.0
1.1.1 4.9.0 and higher 4.9.0 and higher 8.0.0, 8.1.0, 8.2.0, 8.3.0
1.1.0 4.9.0 and higher 4.9.0 and higher 8.0.0, 8.1.0, 8.2.0, 8.3.0

Migrate from the Splunk App for Unix and Linux to the Content Pack for Unix Dashboards and Reports

On March 13, 2022, the Splunk App for Unix and Linux will reach its end of life. After this date, Splunk will no longer maintain or develop this product. The functionality in this app is migrating to the Content Pack for Unix Dashboards and Reports.

If you are using the Splunk App for Unix and Linux and want to migrate to Content Pack for Unix Dashboards and Reports, see Migrate from the Splunk App for Unix and Linux to the Content Pack for Unix Dashboards and Reports.

Additional resources

Last modified on 24 August, 2022
  Release notes for the Content Pack for Unix Dashboards and Reports

This documentation applies to the following versions of Content Pack for Unix Dashboards and Reports: 1.1.3


Was this topic useful?







You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters