About the Splunk App for Unix and Linux
The Splunk App for Unix and Linux provides pre-built data inputs, searches, reports, alerts, and dashboards for Linux and Unix management. You can monitor, manage, and troubleshoot *nix operating systems from one place. Included are a set of scripted inputs for collecting CPU, disk, I/O, memory, log, configuration, and user data.
Use the Splunk App for Unix and Linux to:
- Get information about who's logged into your system, including last login times and unauthorized login attempts.
- Find out how much network throughput and bandwidth your system is using.
- Determine the status of current running processes on your system, and who is running them.
- Learn what software is installed on your system.
How does it work?
The Splunk App for Unix and Linux runs on top of a Splunk instance and gathers various system metrics, including:
- Hardware information - CPU type, count, and cache; hard drives; network interface cards, count, and memory, as well as CPU statistics.
- Disk information, including available disk space and associated input/output statistics for devices and partitions.
- Information about the configured network interfaces, including connections, routing tables, and TCP/UDP transfer statistics .
- User statistics, including last login times for system accounts, user attributes, and security-related information.
- Information about processes, the files they open, and other resources they use.
The app presents this data to you with pre-built reports and dashboards to give you full visibility into your system's operation.
How do I get it?
Download the Splunk App for Unix and Linux from Splunkbase.
About the Splunk Technology Add-on (TA) for Unix and Linux
This documentation applies to the following versions of Splunk® App for Unix and Linux: 4.5