*nix data you can collect with collectd in ITE Work
You can collect the following metrics data for *nix systems with collectd.
Default dimensions for *nix integrations
These are the default entity-identifying dimensions for each *nix host:
host
ip
kernel_version
entity_type
Source types for *nix integrations
These are the source types for metrics and log data:
Data type | Source type |
---|---|
Metrics |
|
Logs |
|
Metrics data for *nix integrations
These are the metrics collectd collects for each *nix host:
Category | Metric |
---|---|
CPU |
|
Memory |
|
DF |
|
Load |
|
Disk |
|
Interface |
|
Log data for *nix integrations
These are the logs a universal forwarder collects for each *nix host by default:
/etc/collectd/collectd.log
$SPLUNK_HOME/var/log/splunk/*.log*
/var/log/syslog
/var/log/daemon.log
/var/log/auth.log
Unix and Linux integration requirements in ITE Work for collectd | Collect *nix data in ITE Work with the Splunk Add-on for Unix and Linux |
This documentation applies to the following versions of Splunk® IT Essentials Work: 4.18.0, 4.18.1, 4.19.0, 4.19.1
Feedback submitted, thanks!