Getting Data In
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

How to monitor HD free space on servers?

jbleich
Path Finder
‎02-19-2016 01:37 PM

Do I have to have the Splunk forwarder loaded on every server, or is there a way to send that info to a syslog server and have Splunk read it from there?

I'm basically wanting to get an alert anytime an HD on any of my servers reaches 10% or less.....

Anybody done this?

Tags (3)
0 Karma
Reply

esix_splunk
Splunk Employee
Splunk Employee
‎02-19-2016 02:11 PM

You could aggregate you syslog feeds to one central server, and then read in syslog to Splunk on that server. However, you would need to configure your own script to monitor disk utilization and write that to syslog. The Splunk UF and TA-nix has a built in script that will run and report back on the disk utilization. That does require the app to be installed on all your boxes though.

0 Karma
Reply

jbleich
Path Finder
‎02-19-2016 02:22 PM

So i could load the UF on all of my servers and then just set it to report disk utilization to an index i create in splunk? the UF on every box isnt a concern as long as it doesnt require a lotof resources, having it on all boxes could open a pandoras box of stuff I'd like to do from each server so that might be good 🙂

0 Karma
Reply
Get Updates on the Splunk Community!

Stay Connected: Your Guide to May Tech Talks, Office Hours, and Webinars!

Take a look below to explore our upcoming Community Office Hours, Tech Talks, and Webinars this month. This ...

They're back! Join the SplunkTrust and MVP at .conf24

With our highly anticipated annual conference, .conf, comes the fez-wearers you can trust! The SplunkTrust, as ...

Enterprise Security Content Update (ESCU) | New Releases

Last month, the Splunk Threat Research Team had two releases of new security content via the Enterprise ...