*nix data you can collect with collectd in ITE Work
You can collect the following metrics data for *nix systems with collectd.
Default dimensions for *nix integrations
These are the default entity-identifying dimensions for each *nix host:
host
ip
kernel_version
entity_type
Source types for *nix integrations
These are the source types for metrics and log data:
Data type | Source type |
---|---|
Metrics |
|
Logs |
|
Metrics data for *nix integrations
These are the metrics collectd collects for each *nix host:
Category | Metric |
---|---|
CPU |
|
Memory |
|
DF |
|
Load |
|
Disk |
|
Interface |
|
Log data for *nix integrations
These are the logs a universal forwarder collects for each *nix host by default:
/etc/collectd/collectd.log
$SPLUNK_HOME/var/log/splunk/*.log*
/var/log/syslog
/var/log/daemon.log
/var/log/auth.log
Unix and Linux integration requirements in ITE Work for collectd | Collect *nix data in ITE Work with the Splunk Add-on for Unix and Linux |
This documentation applies to the following versions of Splunk® IT Essentials Work: 4.9.0, 4.9.1, 4.9.2, 4.9.3, 4.9.4, 4.9.5, 4.9.6, 4.10.0 Cloud only, 4.10.1 Cloud only, 4.10.2 Cloud only, 4.10.3 Cloud only, 4.10.4 Cloud only, 4.11.0, 4.11.1, 4.11.2, 4.11.3, 4.11.4, 4.11.6, 4.12.0 Cloud only, 4.12.2 Cloud only, 4.13.0, 4.13.1, 4.13.2, 4.13.3, 4.14.0 Cloud only, 4.14.1 Cloud only, 4.14.2 Cloud only, 4.15.0, 4.15.1, 4.15.2, 4.15.3, 4.16.0 Cloud only, 4.17.0, 4.17.1
Feedback submitted, thanks!