Nagios 3.0 and Splunk


I was just playing a test set-up for Nagios, to monitor some hosts, services and devices for me across the data center, when I ran into Splunk in a config file. Being naturally curious, I checked out Splunk...

Splunk is basically your IT search repository. It has a search engine that collects everything you want to track from all your servers. Use Splunk to collect SNMP traps, mail queues, log from web servers, firewall or routers, transaction and database logs and more. It can index anything because it uses live tracking. What it doesn't know but occurs frequently, you can teach it. Best of all, use Splunk to trigger an SNMP alert for a host or service in Nagios, when say more than 10 HTTP 404 errors occur on your corporate website. Probably there has been an error that some other system may or not have tried to inform you about... Excellent! Some assembly required of course, as everyone has different logs, needs, wishes and demands...

2 comments:

askar adibi said...

hi.I need install nagios in the unbreakable linux or enterprise linux 5.5.but i cant find any things in the nagios site or internet.there is only about redhat linux or debian instruction in the internet!!!and i cant install and configure nagios.we download nagios server from internet in vmware format and up it(cent os linux).and we need install agent in the oracle unbreakable linux.please help me if u have any link or manual please sent them for me
adibi.askar@gmail.com

thnx

Christian Peper said...

Oracle's Linux is RedHat and CentOS compatible. So just use those packages. It they don't work, they usually check for specific OS version strings in the script. Just modify those checks and they'll work.

Oh and the VMware image won't work. You'll need the packages or the raw sources files for Nagios. That will always work.