narkive

unknown

1970-01-01 00:00:00 UTC

<div link=3D"blue" vlink=3D"purple" lang=3D"EN-US">
<div>
Huh.=A0=A0 Where did thos=
e new options come from?=A0 They weren=92t in the cgi.cfg docs the last tim=
e I looked
<span style=3D"font-size:11.0pt;font-family:Wingdings;color:#1f497d"=

J<span style=3D"font-size:11.0pt;font-family:"Calibri",&q=

uot;sans-serif";color:#1f497d">.
=A0<=
/p>
I agree, it=92s not terri=
bly clear to me what that option does, but it does reference =93Splunk IT=
=94 which is a special Splunk package that you can use for Splunk
benchmarking. =A0=A0That still doesn=92t make it clear what it=92s used fo=
r.
=A0<=
/p>
I see a second parameter,=
=93splunk_url=94 that lets you specify the URL for your Splunk server.<=
/u>

=A0<=
/p>
Maybe it just somehow say=
s to pepper the logs with your Splunk URL in appropriate places.<=
/u>

=A0<=
/p>
Mark=

=A0<=
/p>
From:</spa=
n> Sean Alderman [mailto:<a href=3D"mailto:***@udayt=
on.edu" target=3D"_blank">***@udayton.edu</a>]
 
Sent: Tuesday, September 10, 2013 1:34 PM 
To: Nagios Users List<div class=3D"im"> 
Subject: Re: [Nagios-users] Splunk Integration Question...=
</div>
=A0
Just what's in the nagios doc on CGI.cfg.=
The doc is lacking about what it does, so I guess I'm a little curious=
what that config is about.<div><div class=3D"h5">
- Sean Alderman 
Senior Engineer, UDit Systems Integration
This message had been brought to you by Andro=
id Bionic.
<div>
On Sep 10, 2013 1:10 PM, =
"Frost, Mark {BIS}" <<a href=3D"mailto:***@pepsico.com=
" target=3D"_blank">***@pepsico.com</a>> wrote:</p=
<div>
<div>

Sean,

=A0

Can you describe what you=92re doing for Splunk =
integration with Nagios?=A0=A0 I=92ve used Splunk with Nagios in a couple d=
ifferent ways, but I=92m not aware of any single standard for doing
so.

=A0

Originally, I just had Splunk run a scheduled se=
arch, which would trigger a script which sent a passive check result back t=
o a Nagios service via NSCA.=A0=A0 That way =96 having Nagios
process passive check results from Splunk =96 was the only way I could see=
to do that.

=A0

Recently, I played around a bit with writing scr=
ipts that made use of Splunk=92s REST API so the checks could be run as act=
ive checks from Nagios.=A0 (I always prefer active checks).=A0=A0
I set this up for only one check, but once I got it working it worked pret=
ty well.

=A0

As a side note, I=92m still a little on the fenc=
e about whether or not I really want to have Nagios find problems through S=
plunk and then alert on them or have Splunk find an alert
on them directly without using Nagios at all=85

=A0

Are you referring to another way of making Splun=
k and Nagios talk together?

=A0

Mark

=A0

From: Sean Alderman [mailto:<a href=
=3D"mailto:***@udayton.edu" target=3D"_blank">***@udayton.edu=
</a>]
 
Sent: Monday, September 09, 2013 1:12 PM 
To: <a href=3D"mailto:nagios-***@lists.sourceforge.net" target=3D"=
_blank">nagios-***@lists.sourceforge.net</a> 
Subject: [Nagios-users] Splunk Integration Question...=


=A0
<div>
<div>
<div>
<div>

Greetings,
</div>

=A0 I was hoping I might find someone who's got the splunk integration =
actively working.=A0 I'm running Nagios Core (via EPEL) and Splunk 5.0.=
3 on OracleLinux 6.4.
</div>

=A0=A0 When I edit cgi.cfg and enable splunk integration, then set the splu=
nk URL to <a href=3D"https://%3cmysplunkserver%3e:8000/en-US/app/search/fla=
stimeline" target=3D"_blank">
https://<mysplunkserver>:8000/en-US/app/search/flastimeline</a>, I no=
tice the nagios URLs look like: https://<mysplunkserver>:8000/en-US/a=
pp/flashtimeline?q=3Dsearch%<a href=3D"http://20test1.udayton.edu" target=
=3D"_blank">20test1.udayton.edu</a>%20<nagios plugin
check>.=A0 I have two questions...

=B7=A0=A0=A0=A0=A0=A0=A0=A0
Is there a way I can make nagios use the hostname only, not the FQDN=
?=A0 We use short names in splunk so we don't a mix of fqdn and short n=
ames since we use both forwarders and syslog as input.


=B7=A0=A0=A0=A0=A0=A0=A0=A0
What data is this query looking for, is it expected that I should ha=
ve my nagios log in splunk?=A0 The <nagios plugin check> in the query=
doesn't seem useful to me, unless there's splunk data specifically=
tied to that check, and I'm hoping someone could
provide an example. 

</div>
<div>
<div>
<div>
<div>

Kind regards,
</div>
<div>

-- 
<div>

Sean M. Alderman 
Senior Engineer, UDit Systems Integration and Engineering 
University of Dayton
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
 
---------------------------------------------------------------------------=
--- 
How ServiceNow helps IT people transform IT departments: 
1. Consolidate legacy IT systems to a single system of record for IT 
2. Standardize and globalize service processes across IT 
3. Implement zero-touch automation to replace manual, redundant tasks 
<a href=3D"http://pubads.g.doubleclick.net/gampad/clk?id=3D51271111&iu=
=3D/4140/ostg.clktrk" target=3D"_blank">http://pubads.g.doubleclick.net/gam=
pad/clk?id=3D51271111&iu=3D/4140/ostg.clktrk</a> 
_______________________________________________ 
Nagios-users mailing list 
<a href=3D"mailto:Nagios-***@lists.sourceforge.net" target=3D"_blank">Nag=
ios-***@lists.sourceforge.net</a> 
<a href=3D"https://lists.sourceforge.net/lists/listinfo/nagios-users" targe=
t=3D"_blank">https://lists.sourceforge.net/lists/listinfo/nagios-users</a><=
br>
::: Please include Nagios version, plugin version (-v) and OS when reportin=
g any issue. 
::: Messages without supporting info will risk being sent to /dev/null</=
u>
</div>
</div></div></div>
</div>

 -----------------------------------------------------------------------=
------- 
How ServiceNow helps IT people transform IT departments: 
1. Consolidate legacy IT systems to a single system of record for IT 
2. Standardize and globalize service processes across IT 
3. Implement zero-touch automation to replace manual, redundant tasks 
<a href=3D"http://pubads.g.doubleclick.net/gampad/clk?id=3D51271111&iu=
=3D/4140/ostg.clktrk" target=3D"_blank">http://pubads.g.doubleclick.net/gam=
pad/clk?id=3D51271111&iu=3D/4140/ostg.clktrk</a> ___________________=
____________________________ 

Nagios-users mailing list 
<a href=3D"mailto:Nagios-***@lists.sourceforge.net">Nagios-***@lists.so=
urceforge.net</a> 
<a href=3D"https://lists.sourceforge.net/lists/listinfo/nagios-users" targe=
t=3D"_blank">https://lists.sourceforge.net/lists/listinfo/nagios-users</a><=
br>
::: Please include Nagios version, plugin version (-v) and OS when reportin=
g any issue. 
::: Messages without supporting info will risk being sent to /dev/null <=
/blockquote></div> -- <div dir=3D"ltr">Sean M.=
Alderman Senior Engineer, UDit Systems Integration and Engineering 
University of Dayton 300 College Park Dayton, Ohio 45469-1530 <a>(=
937) 229-5088</a> <a href=3D"mailto:***@udayton.edu" target=3D"_b=
lank">***@udayton.edu</a> "We are not some casual and=
meaningless product of evolution. Each=20
of us is the result of a thought of God. Each of us is willed. Each of=20
us is loved. Each of us is necessary."=A0 - BXVI </div>
</div>

--089e013d1eaa5e3fc804e64435ec--