Splunk® Content Packs for ITSI and IT Essentials Work

Splunk Content Packs for ITSI and IT Essentials Work

Acrobat logo Download manual as PDF


Acrobat logo Download topic as PDF

Report Reference for the Content Pack for Unix Dashboards and Reports

The following table lists the reports that are present in the Content pack for Unix Dashboards and Reports.

Use the reports

To navigate to these reports, select Dashboards > Reports. The reports will be marked with the App name as "DA-ITSI-CP-unix-dashboards".

Report name Description
Consumption by User Last Hour (UNIX - CPU) Shows the Percent of CPU usage as per each user in the last one hour.
Top Users by Consumption Last Hour (UNIX - CPU) Shows the top CPU consumption for the last one hour with respect to users.
10 Most Popular Executables Last Hour (UNIX - CPU) Provides the 10 most frequent commands being executed in the last one hour.
vmstat Shows the data populated under the source type vmstat for the last one hour.
ps Shows the process status of the processes running over the last one hour.
top Shows the list of processes or threads managed by the system which are running over the last one hour.
hardware Shows the data generated under the hardware sourcetype for the last one day.
iostat Shows the data related to the iostat command, i.e., the input/output devices that are loaded in the system, over the last one day.
netstat Shows the list of all network connections on the system over the last one hour.
protocol Shows the data for the protocol sourcetype for the last one hour.
openPorts Shows the data for the openports sourcetype for the last one hour.
time Shows the data for the time sourcetype for the last one day.
lsof Shows the list of open files for the last 30 mins.
df Shows the amount of available disk over the last one day.
who Shows the data for the who source type for the last one hour.
usersWithLoginPrivs Shows the login details of the user for the last day
lastlog Shows the latest log details within last one hour
interfaces Shows the details about the interfaces within last one hour
cpu Shows the data collected corresponding to the system CPU for the last one hour.
package Shows the data for the cpu package for the last day.
User Add Shows the data regarding events when a user is added to the system.
Group Add Shows the data regarding events when a group is added to the system.
Password Change Shows the data related to the time and event at which the password is changed
Password Change Failed Shows the data related to the time and event at which password change has failed
Failed Attempts at SU Shows data about failed attempts at switching the user in the system
Frequently Opened Ports (UNIX - NET) Shows the data details regarding frequently opened port addresses
Top 10 Users by Virtual Memory Last Hour (UNIX - MEM) Shows the data regarding the top 10 users using the Virtual memory over the last one hour
Virtual Memory Subsystem Stats (UNIX - MEM) Display the Virtual memory details related to the subsystems.
Memory Usage over Last 3 Hours (UNIX - MEM) Shows the data regarding memory usage over the last 3 hours
Avg Resident Memory by Process Last 3 Hours (UNIX - MEM) Shows total memory used by each command.
Avg Virtual Memory by Process Last 3 Hours (UNIX - MEM) Shows the average virtual memory occupied by the processes over the last 3 hours
Latest Packages by Host Shows the logs of packages accessed with respect to each host
Hardware Configurations by Host Shows the data related to hardware configuration details corresponding to each host.
UNIX - All Logs Shows all the collected logs of the system.
UNIX - All Configs Shows the logs related to all the configuration updates
UNIX - Timechart Errors Or Critical Shows the data related to errors that occurred in the system.
UNIX - Timechart Config Changes Shows the time-series formatted changes in configuration
Dropdown Lookup - Dimension Shows the data stored in dropdowns.csv
Metrics Selectable Lookup Shows the data related to unix categories and groups
UNIX - Perf - ps mem by cmd Shows the data regarding memory occupied by a list of all processes.
UNIX - Perf - cpu by cmd Shows the average use of CPU % used by each command
UNIX - Perf - iostat blk rw sec Shows the time-series formatted use of read and write devices connected with a system
UNIX - Perf - iostat blk wr sec by hostUNIX - Perf - iostat blk wr sec by host Shows the time-series formatted use of read and write devices connected with the system in reference to each host
UNIX - System - lsof open files by user Shows list of open files in reference to each user
UNIX - System - netstat count by proto Shows all the connections established by each type of protocol on the system
UNIX - System - netstat count by type Shows the data of connections grouped in reference to their type
UNIX - Perf - ps cpu by command Shows the % CPU used by each command
UNIX - Perf - ps rss mem by user Shows data regarding average memory occupied by each user.
UNIX - Perf - ps rss mem by command Shows data regarding average memory used by each command
UNIX - Perf - top cpu by host Shows data regarding average CPU usage by each host
UNIX - System - vmstat free mem by host Shows the average free memory used by each host.
UNIX - System - vmstat total mem by host Shows the average total memory used by each host.
UNIX - Home - memory used by host realtime Shows the average memory percentage used by each host.
UNIX - Home - cpu used by host realtime Shows the median of CPU used by each host.
alerts_fired Shows the data associated with the "action" of a fired alert
fired_alerts Shows the data associated with the "index" for the fired alert
Last modified on 23 August, 2021
PREVIOUS
Troubleshoot the Content Pack for Unix Dashboards and Reports
  NEXT
About the Content Pack for VMware Dashboards and Reports

This documentation applies to the following versions of Splunk® Content Packs for ITSI and IT Essentials Work: current


Was this documentation topic helpful?

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters