icon/x Created with Sketch.

Splunk Cookie Policy

We use our own and third-party cookies to provide you with a great online experience. We also use these cookies to improve our products and services, support our marketing campaigns, and advertise to you on our website and other websites. Some cookies may continue to collect information after you have left our website. Learn more (including how to update your settings) here.
Accept Cookie Policy

We are working on something new...

A Fresh New Splunkbase
We are designing a New Splunkbase to improve search and discoverability of apps. Check out our new and improved features like Categories and Collections. New Splunkbase is currently in preview mode, as it is under active development. We welcome you to navigate New Splunkbase and give us feedback.
Cancel Visit New Splunkbase Visit
My Account
Login Signup
Support & Services
Search Splunk Documentation Splunk Answers Education & Training User Groups Splunk App Developers Support Portal Contact Us
My Account
Login Signup
Support & Services
Search Splunk Documentation Splunk Answers Education & Training User Groups Splunk App Developers Support Portal Contact Us

Accept License Agreements

This app is provided by a third party and your right to use the app is in accordance with the license provided by that third-party licensor. Splunk is not responsible for any third-party apps and does not provide any warranty or support. If you have any questions, complaints or claims with respect to this app, please contact the licensor directly.

END-USER LICENSE AGREEMENT

Splunk Websites Terms and Conditions of Use

Thank You

Downloading Monitoring OpenShift - Metrics and Log Forwarding
SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_524440.tgz) 6a3440a38fff5041a7c808a1f02526f3c8c1c2a15ba4edc2ad0d0bf6268b5bcd SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_523431.tgz) 958caed5f00f664ce30478f35b9dda4fc1859b05dbc195590f636fa5fcb7993a SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_523430.tgz) 5b42bd6140dae44b0de7e746ad379c1a3a5aa21f4e85010e2f8f58ef7db63a06 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_522422.tgz) 8c68085ba75466efc89f936d4dd36cdb76a66f5f3d5b168a25b671c183223acf SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_522420.tgz) e3522f5d6ab57e22dde1d8ddd40d25f2cc5689ef7d8aab4762fdcb61b3760769 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_521410.tgz) 5b8262597b4f4b177e465298a80f246c1d4ff071ae7401924124c31356ddab4a SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_520400.tgz) 9d588806643c0c922070ca83798fb37c82e3e364083c698830c5815696ede95a SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_519390.tgz) 899b29ba34e0f64d6f852d1400384a21ff33355cba975306f84bc7f7e0f86cb1 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_518380.tgz) cd13c75ddc730d165f51a068455dce72a59c2678893a9f4eb8a932188f5a7824 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_517372.tgz) ddc9a98e11179cbab9a05db532fa470c9f460e2692220847768239e1ce70fd1f SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_517371.tgz) 11f4c53cd579a1d2889941c31312c3f65d872f46b77046c4b192353b927b20d4 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_517370.tgz) e439066c568f326ddcc625ba0d08c3e1e41ceacc6877d3e1e2816dec4cd81d01 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_516363.tgz) 29b9854f2ab9ea1e9218b4d2fd0e5ced0d4623a663ef9ca5601df39c219728a2 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_516361.tgz) 58b9baabf2fb23c5bfac4c7a3790e035979c0b9007e5365126319eaf33279e00 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_516360.tgz) 838675a97c21af031740aa950d580ce9159312981bae724c5cf9e2990aca9bde SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_516350.tgz) 9596786a2baced838684492faf1a2fe3ca0eed87e7860a4201c28dfb98eeb455 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_515300.tgz) ec98db8f25573c5b44a0b09a435746aa83a9aeb0fa00b4c1f129df76a57f9329 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_514280.tgz) 71a7feafaf29e93c667488e9ccafd6c83ca25e7e709f641b84cf96c5f01cebec SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_512272.tgz) 6e9e73c7d5a3089d9abb513f986b0afc42e1b0b695393cf699e858883ba56d7d SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_512271.tgz) 9ec440bf31016a4e7ba063bf7f0a0e995a08cf668e7b1a0c0f6972f40ee027c5 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_512270.tgz) ad5008bae5762157707f4c194a5fb99a4d9119efa5a89d1306452f3f926f4fba SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_511260.tgz) d247e39844a5c1d1522810e83b67232cd9ddd80cd4e0096e1727d45d9536d292 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_510250.tgz) ffb99fc3ce1f797e9727274029b03c6a9b1e4c0e67c8b78014c5d2765da99e06 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_59240.tgz) 2e5dcfb06c7a9a4622df30fa628e1cf71bfbf48c75587edbb5b61aac223b3b86 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_58231.tgz) 5069fdd59603862d9e2dc3daee38451dbe2f264f7b5fb7403e91c74f8a5dd428 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_58230.tgz) 91a4abf74a7fcfaa1658845233df5168b32023c1911804c43c6ad7f58fb24e3c SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_57220.tgz) 99f13a1084a7ad95356c0e0c234612c4a6faee29b768cd28a094ca10717a3060 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_56212.tgz) dcec197124cd6d778741f7ebaf6c36a8d4559dd0283d496cefd7471363950820 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_55202.tgz) ded6f6d9d6484a1c6643ceb19e1cae73829ec9fadf971f3057884240f3756a51 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_54201.tgz) 86ac71ba4f5897bc4a4a90e27d5c1124ada68dbffffd9b19a5c6339d6212e59d SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_54200.tgz) 49558865070a730b16dd8b5148af0cd8dc799cde7b653a5b8ffe3204c3092acf SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_53190.tgz) fa5c4114289ca862ea21896df6f56b864e8cc8c4ee4217d780123f88bea443ee SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_52180.tgz) 2bbce4d745de714d29cbfdec5ce5b2c9c24704f69dd070f448c90410501916b4 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_52179.tgz) 452c3bf03fb88219781ebdb3929425525856f6be8ddbf39d1d287adbf1af4460 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_52177.tgz) d0ae68786322b55c59edd7597798154433e7bc490b7e9dc38ea377529dc6fd5d SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_51175.tgz) 4d6e4b0280f88d270e4b1f1d0dcc40e27e395184333b007a0859b2a4b4c8b827 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_50174.tgz) 7c140b11309feeabd8be487dc14750a652a218e11b433ef9b9c616e98bd5d500 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_4024.tgz) e77fc147b1f9aad064a9df98448a5e977cb1fd900dd096b02278fd42aca31da8 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_3023.tgz) 4cb4a11ed1c9e8453963f3fca8502ac3f2ac1fa92539e55b4b9e6e193f6eb497 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_3022.tgz) 3c87ebfe93280456846b618145fcbe16a9290a6abf4d0fc0b0395ed9df307d16 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_2121.tgz) 7275beb762f5bb9c97222a15a9b3989f39b7478681fadf3b4788eef62f515368 SHA256 checksum (monitoring-openshift-metrics-and-log-forwarding_2118.tgz) 471ae3531b6101363c4b8a6a73bc58fd1a2e73963690ec7e8db8484eda7e0384
To install your download
For instructions specific to your download, click the Details tab after closing this window.

Flag As Inappropriate
splunk

Monitoring OpenShift - Metrics and Log Forwarding

Splunk Cloud
Overview
Details
Focus on your applications, we will take care of infrastructure monitoring and logs forwarding.

Use cases

- Application Monitoring
- Log Aggregation
- Cluster Health Monitoring
- Security and Audit
- Reduce complexity and improve productivity

With 10 minutes setup, you will get a monitoring solution, that includes log aggregation, performance and system metrics, metrics from the control plane and application metrics, a dashboard for reviewing network activity, and alerts to notify you about cluster or application performance issues.

An application requires Collectord built by Outcold Solutions, see https://www.outcoldsolutions.com/docs/monitoring-openshift/

Overview

Outcold Solutions provide solutions for monitoring Kubernetes, OpenShift and Docker clusters in Splunk Enterprise and Splunk Cloud. We offer Splunk applications, which give you insights across all containers environments. We are helping businesses to reduce complexity related to logging and monitoring by providing easy-to-use and deploy solutions for Linux and Windows containers. We deliver applications to help developers monitor their applications and operators to keep their clusters healthy. With the power of Splunk Enterprise and Splunk Cloud, we offer a unique solution to help you keep all the metrics and logs in one place, allowing you to quickly address complex questions on container performance and cluster health.

Description

We provide solutions for monitoring Kubernetes, OpenShift and Docker clusters in Splunk Enterprise and Splunk Cloud. With 10 minutes setup, you will get a monitoring solution, that includes log aggregation, performance and system metrics, metrics from the control plane and application metrics, a dashboard for reviewing network activity, and alerts to notify you about cluster or application performance issues.
All our solutions are powered by the Collectord, a container-native software built by Outcold Solutions that provides capabilities for discovering, transforming and forwarding logs, collecting system metrics, collecting metrics from the control plane of the orchestration frameworks and forwarding network activity. Collectord provides flexible and powerful tools for transforming logs. With our software you can hide sensitive information from the loglines before forwarding them. With Collectord you can reduce the licensing costs associated with logging aggregation by choosing which data you want to forward from the log streams. Collectord forwards container logs, host logs and can discover logs written by the containerized applications.

Use cases

Application Monitoring

See detailed metrics from containers and processes, including performance metrics, utilization metrics and security insights. Forward application-specific metrics, exported in Prometheus format. Use prebuilt Splunk dashboards for a comprehensive overview.

Log Aggregation

Aggregate logs from containers, applications, and servers. Use flexible mappings to filter logs enriched with container metadata, correlate logs with metrics, and leverage Splunk capabilities for analyzing logs. Use Collectord to transform logs before they reach Splunk, remove sensitive information, remove PII data to help keep your logs GDPR compliant. With Collectord you can reduce licensing and storage costs by choosing which loglines you want to forward.

Cluster Health Monitoring

Diagnose cluster issues by looking at historical events, monitoring allocations, and regulating cluster capacity. Leverage pre-built alerts for monitoring the health of the clusters out of the box.

Security and Audit

Define access to the data by clusters, namespaces and even pods or containers. Review network activities, happening inside your cluster, and outside connections. Verify containers running with elevated security permissions. Use audit logs for monitoring changes in deployments.

Reduce complexity and improve productivity

Use one tool to collect and forward logs and metrics required by developers for reviewing performance and health of their applications. With the annotations developers can define how they want to see the data in log aggregation tool, specify multiline log patterns, removing terminal escape codes, override types, sources and indexes.

Links

Release Notes

Version 5.24.440
April 28, 2025

Supports collectorforopenshift version 5.24.x and below (see https://www.outcoldsolutions.com for latest configuration)
- New alert: Cluster Warning: Node Condition
- Bug fix: Workload dashboard might show a warning for the Events table telling about using wildcard in the middle of the string

Collectord updates:
- Upgrade golang to 1.24.2.
- Upgrade SQLite to 3.48.0.
- Added ability to hide process command line arguments
- Prometheus metrics can be forwarded to Splunk Metrics Index.
- Allow configuring TLS Version and show TLS version used for outputs using the collectord verify command
- To make watchImplementation=2 compatible with previous version, attach the Kind and apiVersion to objects forwarded from the list calls.
- Collectord verify command shows logging driver configured for Docker Daemon
- Added ability to parse unixtimestamp in the application logs with format @unixtimestamp
...
Version 5.23.431
Nov. 18, 2024
  • Update application for Splunk Cloud compatibility
Version 5.23.430
Oct. 23, 2024

5.23.430 - 2024-10-28

Supports collectorforopenshift version 5.23.x and below (see https://www.outcoldsolutions.com for latest configuration)
- To better support installations with large number of nodes and containers, default behavior for most of the dashboards
is to require pressing a Submit button after selecting filters.
- Overview Dashboard - new table with Not Ready Containers.
- Pod Dashboard - include container statuses table.
- Audit Dashboard - include user agent, and update compatibility with latest audit formats.
- Audit Dashboards - small performance improvement for the new installations.
- Host dashboard - show node conditions table.
- Host dashboard - show only external eht* interfaces in network stats.

Collectord updates:
- Implement new and improved watch mechanism for Kubernetes resources to handle large clusters.
- Change the default pipe join configuration to have max size of 1MB instead of 100KB.
- Allow ...
Version 5.22.422
June 17, 2024

5.22.422 - 2024-06-17

  • Bug fix: Fix issue with calculating values on Cluster Resource Quota and Resource Quota dashboards.

Collectord updates:

  • Upgrade SQLite to 3.46.0.
  • Upgrade golang to 1.22.4.
Version 5.22.420
April 21, 2024

5.22.420 - 2024-04-22

Supports collectorforopenshift version 5.22.x and below (see https://www.outcoldsolutions.com for latest configuration)
- Workload dashboard - add Pod OwnerKind and OwnerName, PriorityClass, and Pod Requests/Limits
- Address too many data points in host and workload dashboard in network graphs
- Additional CPU Metrics: CPU IOWait, Steal and Idle in Top Hosts dashboards.
- Showing CPU IOWait in Host dashboard.
- Alert Container CPU Throttled - exclude container with low CPU usage.
- New dashboard Review->Disk Stats for the host.
- Exclude virtual ethernet interfaces from host dashboard.
- Support memory limits and requests expressed in milli-bytes.

Collectord updates:
- Allow disabling IP address Lookup in net_socket_table input.
- Better handling of zombie processes in proc_stats input.
- Allow configuring user Splunk outputs using CDR SplunkOutput.
- Allow blacklisting labels from forwarded metadata.
...
Version 5.21.410
Oct. 14, 2023

5.21.410 - 2023-10-16

Supports collectorforopenshift version 5.21.x and below (see https://www.outcoldsolutions.com for latest configuration)
- Compatibility updates for the version 5.21 of Collectord
- New Dashboard: Review -> CPU (Throttled, Limits, Requests)
- Alert update: High number of GRPC errors
- Alert update: Container CPU Throttled
- Network tables update: show UDP connections for Host, Workloads, Containers, and Pods
- Network Connection Dashboard: allows filtering by namespaces
- Show maximum and average number of Pods per cluster in Clusters (Allocations and usage) dashboard
- Update Cluster Resource Quota and Resource Quota dashboards to support comparing milli-cores and cores

Collectord updates:
- Support for global replace configurations for Collectord, allowing to sanitize data before forwarding to Splunk
- Support journald as logging driver for container logs
...
Version 5.20.400
April 9, 2023

5.20.400 - 2023-04-17

Supports collectorforopenshift version 5.20.x and below (see https://www.outcoldsolutions.com for latest configuration)
- New dashboard: Review - Cluster Resource Quotas
- Show Pod conditions on the Pod dashboard
- Bug fix: Pods dashboard filters out pods not on the host network.
- Compatibility updates for the version 5.20 of Collectord

Collectord updates:
- Multi-architecture images for amd64 and arm64
- Allow sending logs to multiple Splunk HEC endpoints simultaneously
- New annotation collectord.io/volume.{N}-logs-onvolumedatabase to keep acknowledgement information about forwarded logs on the volume
- Allow including placeholder templates in the annotation collectord.io/volume.{N}-logs-glob
- Support for new outputs (ElasticSearch and OpenSearch)
- Collectord produces diag file without performance data, if flag --include-performance-profiles is not set
...
Version 5.19.390
Oct. 16, 2022

5.19.390 - 2022-10-17

Supports collectorforopenshift version 5.19.x and below (see https://www.outcoldsolutions.com for latest configuration)
- Create scheduler dashboard (and move those metrics from controller dashboard)
- Update dashboards for latest changes in the metric names for API Server, Controller and Scheduler
- Update Kubelet dashboard to support various container runtimes
- Audit (users and projects) dashboard: show access to non-projects resources
- Logs dashboard: show container and pod as separate filters
- New alert for Collectord alarms for node diagnostics (reboot required, and entropy)
- Bug fix: hosts dashboard does not filter events by host

Collectord updates:
- Splunk output supports maximumMessageLength to truncate messages exceeding this size
- Splunk output supports requireExplicitIndex to ignore all events that don't have explicit index defined
...
Version 5.18.380
April 19, 2022
  • Cluster filter on Events dashboard
  • Rewrite CPU throttled alert to make it less verbose
  • Memory usage now reports memory without caches and memory that can be freed.
  • Support cgroupv2

Collectord updates:
- Support cgroupv2
- New ability to specify the message field name for the logs extraction with annotations extractionMessageField
- Collectord improves grace period for expired licenses allowing to bootstrap new nodes for 14 days
- Support of journald database written with systemd library 247+
- Upgrade go runtime to 1.17.9
- Bug fix: cleanup the diag, exclude the real license key
- Bug fix: collectord reports high CPU usage for just started containers or hosts
- Bug fix: update pods/container labels when user updates them (prior restart was required)
- Bug fix: set now as a date for container logs with corrupted log files instead of 0 timestamp
- Bug fix: include the values of whitelists and blacklists in diag
...
Version 5.17.372
Jan. 27, 2022
  • Added version=1.1 to all dashboard for compatibility with Splunk Cloud and pass AppInspector
Version 5.17.371
Oct. 19, 2021

5.17.371 - 2021-10-20

  • Bug fix: resource quotas dashboard might not show the values
Version 5.17.370
Oct. 15, 2021

5.17.370 - 2021-10-20
- Show milicores/cores CPU usage instead of percents
- New dashboard: Review - Resource Quotas
- Review - Projects: filter by project name
- Review - Clusters: filter by node label
- Review - Clusters: include max and avg usage
- Bug fix: storage dashboard might not render in some Splunk versions
- Bug fix: Projects dashboard shows only one namespace label
Collectord updates:
- Upgrade to Go 1.17.2
- Support query in Prometheus URLs for metrics
- Collectord now reports source and source type for the events with incorrect index
- Support for licensing server
- Allow to specify multiple values for blacklist and whitelist for host logs
- Support for CPU-based licenses
- Bug fix: Collectord clogs the output with WARN messages for stopped containers running with Containerd
...
Version 5.16.363
May 27, 2021

5.16.363 - 2021-05-26

Requires collectorforopenshift version 5.16.363 or above (see https://www.outcoldsolutions.com for latest configuration)

  • Bug fix: Fix misprint "searcg" in Alert Monitoring OpenShift: Cluster Warning: high host CPU usage
  • Bug fix: Put in parentheses source selection in macro_openshift_prometheus_metrics

Collectord updates:

  • Upgrade go runtime to 1.16.3
  • Bug fix: fix verbose logging for docker watcher with messages "failed to get next event"
  • Bug fix: NetworkPolicy cannot be watched, as Collectord does not convert it in plural form properly
  • Bug fix: Verify command fails on Containerd runtime
  • Bug fix: DefaultIdleConnTimeout is ignored for HTTP clients
Version 5.16.361
March 17, 2021
  • Overview dashboard filters respect filters (show only namespaces from selected cluster)
  • Bug fix: use correct units for Memory and Storage (MiB, MB, Mb)
  • Bug fix: compatibility with new format of Events from API server (FirstSeen, LastSeen, Source could be shown as null)
  • Bug fix: compatibility fixes for OpenShift 4.x
  • Bug fix: Collectord metrics request time shows the summary on the period, not the individual request times

Collectord updates:

  • Allow removing managed fields from events (enabled with new configurations by default)
  • Upgrade to Go 1.16.2
  • Blacklist verbose hyperkube host logs from journald (enabled with new configurations by default)
  • Bug fix: precise time to Splunk HEC, sending with milliseconds instead of nanoseconds (which are incorrectly ronded by HEC)
  • Bug fix: first sample of the container can record above 100% of the CPU usage, as the values are pretty low
  • Bug fix: verify command does not respect glob patterns for Prometheus inputs (certs, tokens)
    ...
Version 5.16.360
March 17, 2021

5.16.360 - 2021-03-16

  • Overview dashboard filters respect filters (show only namespaces from selected cluster)
  • Bug fix: use correct units for Memory and Storage (MiB, MB, Mb)
  • Bug fix: compatibility with new format of Events from API server (FirstSeen, LastSeen, Source could be shown as null)
  • Bug fix: compatibility fixes for OpenShift 4.x

Collectord updates:

  • Allow removing managed fields from events (enabled with new configurations by default)
  • Upgrade to Go 1.16.2
  • Blacklist verbose hyperkube host logs from journald (enabled with new configurations by default)
  • Bug fix: precise time to Splunk HEC, sending with milliseconds instead of nanoseconds (which are incorrectly ronded by HEC)
  • Bug fix: first sample of the container can record above 100% of the CPU usage, as the values are pretty low
  • Bug fi
Version 5.16.350
Dec. 15, 2020
  • New dashboard: Collectord metrics
  • Compatibility for Kubernetes 1.20
  • Bug fix: broken link in Allocatable Resources dashboard

Collectord updates:

  • Annotations for collecting prometheus metrics: authorization keys and CAName for SSL certificates
  • Improvement for DNS resolutions of Splunk output FQDN
  • Export internal collectord metrics in Prometheus format
  • Forwarding internal collectord metrics to Splunk
  • For the watch objects inputs being able to hide management fields
  • In the diag include all open file descriptors
  • Upgrade go runtime to 1.14.13
  • Remove \0 symbol from the labels values in the prometheus metrics
  • Allow to filter host logs with blacklist and whitelist
  • Bug fix: less verbose warnings about not being able to load resources from API server
  • Bug fix: performance improvements for Ack DB
  • Bug fix: custom prometheus metrics forwarded by Collectord do not include cluster field or custom user fields
  • Bug fix: addon pod terminates faster
    ...
Version 5.15.300
June 1, 2020

5.15.300 - 2020-06-01

Requires collectorforopenshift version 5.15.300 or above (see https://www.outcoldsolutions.com for latest configuration)

  • Events dashboard: filters depend on selection of cluster and node labels
  • Support for Kubernetes 1.18+
  • Improvement for alert "Cluster Warning: high number of errors to Kubernetes API" (only alert on 5xx errors)
  • Bug fix: node events aren't visible in Events tab

Collectord updates:

  • Support for annotations to add custom user fields to data
  • Support for blacklisting and whitelisting Prometheus metrics (significally reducing the indexing cost of data)
  • Verify command improvements - verify proper configurations for cgroup (memory/memory.use_hierarchy is 1)
  • Bug fix: fix bug in prometheus metrics parser, empty fields can be filled with previous fields
  • Bug fix: occasionally addon can report warnings about trying to delete expired keys from ack db
    ...
Version 5.14.280
Jan. 24, 2020
  • Logs dashboard: filters depend on selection
  • Overview dashboard: Project counter for list of projects

Collectord updates:

  • Support templates in the index, source and sourcetype
  • Allow to exclude indexed fields when forwarding to Splunk
  • Support annotation for stats interval for containers
  • Support containerd runtime
  • Bug fix: verify command can show incorrect error about verifying journald input
  • Bug fix: index on namespace should set index for application logs
  • Bug fix: warning about not being able to retrieve node information
Version 5.12.272
Nov. 12, 2019
  • Improvement for the alerts verifying that control components or nodes are down.
Version 5.12.271
Nov. 7, 2019

5.12.271 - 2019-11-07

Requires collectorforopenshift version 5.12.271 or above (see https://www.outcoldsolutions.com for latest configuration)

  • Improvements for the macros for backward compatibility

Collectord updates:
- Bug fix: when event pattern is used for joining multi-line events, the error can not be showed if raised by the input in pipeline.
- Bug fix: reduce warnings failed to get the new event in pipeline - submitted
- Stability improvements
Version 5.12.270
Oct. 18, 2019
  • Compact metrics (pre-calculated on Collectord side)
  • Switched stats for host and cgroup in different macros
  • Use base macro for alerts
  • Improved command extraction for exec in Audit Logs
  • Add cluster name in the alert results

Collectord updates:

  • Watch namespaces and workloads for changes
  • Global configurations with Custom Resources and selectors
  • Describe command to see applied annotations for pods
  • Bug fix: panic when pipe join configuration is removed
  • Bug fix: panic when proc stats is enabled and cgroup stats is disabled
  • Bug fix: support ProxyBasicAuthorization for license server checks
  • Bug fix: Fix for collecting first sample (can show high CPU usage for first sample)
  • Bug fix: if list of URLs is used for Splunk output, the empty URL is still required
  • Beta: dynamic index, source and sourcetype names based on the metafields
  • Beta: cluster diagnostics with one rule: node entropy
Version 5.11.260
Sept. 9, 2019

5.11.260 - 2019-09-09

Requires collectorforopenshift version 5.11.260 or above (see https://www.outcoldsolutions.com for latest configuration)

  • GPU Monitoring (NVIDIA)

Collectord updates:

  • Support for PVC volumes for application logs
  • Bug fix: small memory leak in addon
  • Bug fix: duplicate events then pipeline is getting throttled
  • Bug fix: don't use throttling for devnull output
  • Bug fix: better recovery for ack db corruption
  • Bug fix: crash on journald input initialization when ack db is corrupted
  • Bug fix: annotations joinmultiline requires joinpartial
  • Bug fix: configurations for stdout only with annotations can crash collectord
  • Set events = 50 by default for Splunk output batches
Version 5.10.250
June 15, 2019
  • Security dashboard: Access: access to host via ssh, sudo, exec commands, failed access
  • Security dashboard: Audit (users and namespaces)
  • Security dashboard: Network (traffic)
  • Security dashboard: Network (connections)
  • Security dashboard: Objects (pods) - review pods with host network, age of pods, image pull policy, attached host paths, security context and restart policies
  • Review dashboard: Clusters (allocations and usage)
  • Cluster field filters
  • Base macro for overriding macros for other macros

Collectord updates:

  • Support for volatile and persistent journald storage with default configuration
  • Updated YAML configuration to include most common resources
  • Better support for overriding sourcetype, that does not require to update the Splunk macros
  • New image release base
Version 5.9.240
May 13, 2019

5.9.240 - 2019-05-14

Requires collectorforopenshift version 5.9.240 or above (see https://www.outcoldsolutions.com for latest configuration)

  • Visual improvements on the graphs for the number of logs and events
  • New alerts for the CPU and Memory reservation

Collectord updates:

  • Support for multiple Splunk destinations (outputs)
  • Support subdomains for annotations (to deploy multiple collectord instances)
  • Support for streaming objects from Kubernetes API to Splunk
  • Bug fix: journald input keeps fd open to the rotated files
  • Bug fix: fix in the annotation parser for the interval annotations
  • Bug fix: fix splunk url selection configuration for multiple splunk URLs
Version 5.8.231
April 25, 2019

5.8.231 - 2019-04-25

  • Bug fix: Collectord usage report shows trial licenses for all instances
Version 5.8.230
April 20, 2019

5.8.230 - 2019-04-22

Requires collectorforopenshift version 5.8.230 or above (see https://www.outcoldsolutions.com for latest configuration)

  • Use multiselect filters for most dashboards and filters with possibility to input custom filters.
  • Reduce dedup usage to improve performance on dashboards.
  • Add critical pod annotations for OpenShift ...3.10, and priority class for OpenShift 3.11...
  • Fix: statefulset dashboard does not show data with filters.
  • Add graph of number of pods per namespace on Overview dashboard.

Collectord updates:

  • Bug fix: clogging collectord output with errors when incorrect index is used.
  • Bug fix: short lived containers can results in duplicating logs.
  • Bug fix: clogging collectord output with warnings when kernel reports incorrect VmRss size.
  • Bug fix: annotations cannot override timestamp location for fields extraction.
  • Bug fix: verify command reports Journald input in incorrect place.
    ...
Version 5.7.220
March 16, 2019

Requires collectorforopenshift version 5.7.220 or above (see https://www.outcoldsolutions.com for latest configuration)

  • Review savedsearches/alerts to support indexing delay (start searches from 2 minutes behind) and run them in more random time.
  • Workload dashboard - change CPU (of host) in table to real CPU
  • Fixed single value memory panel on host dashboard (missed span)
  • Use SEGMENTATION=none for stats events to use less disk space (needs to me moved to indexers)

Collectord updates:

  • Support hostname formatting with environment variables in configuration
  • New rotated file logic uses less file descriptors and frees rotated files quicker
  • Allow to specify a default sampling value for container logs
  • Reimplemented shutdown sequence to stop collectord faster
  • Allow to override sampling percent with annotations
  • New Input: journald
Version 5.6.212
Feb. 19, 2019

5.6.212 - 2019-02-19

Requires collectorforopenshift version 5.6.212 or above (see https://www.outcoldsolutions.com for latest configuration)

  • New: Alert: high CPU usage on the host.
  • Fixed: Splunk usage dashboard - charts do not show the data, when the used indexed aren't searchable by default.
  • New: Support Dark theme.
  • New: Free text search in Logs dashboard.
  • New: Add auto-refresh options to the dashboard.
  • Fixed: Revisited CPU limits and requests for Pods and Containers.
  • New: add CPU Max, Memory Max and Project/Namespace labels to the Review-Namespaces dashboard.
  • Fixed: Show deleted events

Read more https://www.outcoldsolutions.com/docs/monitoring-openshift/release-history/
Version 5.5.202
Jan. 23, 2019

5.5.202 - 2019-01-24

Requires collectorforopenshift version 5.5.202 or above (see https://www.outcoldsolutions.com for latest configuration)

  • New: Dashboard Review -> Projects. Review allocations and requests for Projects and pods.
  • Fixed: openshift_stats_cpu_request_percent - is divided by the number of CPU.

Collectord updates:
- Fixed: Interval 0 in Prometheus input can crash the collectord.
- Fixed: When both glob and match are set for the application logs, the glob pattern can block the match pattern from
finding the files in the volume.
Version 5.4.201
Dec. 20, 2018

5.4.201 - 2018-12-19

Requires collectorforopenshift version 5.4.201 or above (see https://www.outcoldsolutions.com for latest configuration)

  • Fixed: Alerts for licenses issued with AWS Subscriptions

Collectord updates:
- Fixed: Better handling rotated files (less open fd)
- Fixed: Events input can hang in the err loop.
Version 5.4.200
Dec. 16, 2018

5.4 - 2018-12-17

Requires collectorforkubernetes version 5.4 or above (see https://www.outcoldsolutions.com for latest configuration)

  • New: CoreDNS dashboard.
  • New: CoreDNS alerts.
  • Improved: etcd metrics representation for bucket values.
  • Compatibility update for collectord 5.4.

Collectord updates:
- New: Attach EC2 metadata fields
- New: Basic Auth for Proxy (License Server and Splunk)
- Fixed: Collectord verifies reports CRI-O as unsupported runtime.
- Fixed: Rare crash on Prometheus metrics definition.
- Fixed: Better handling of acknowledgment database corruption.
- Fixed: When handling incorrect indexes, collectord can send index with an empty string, that Splunk recognize as an incorrect index
Version 5.3.190
Nov. 17, 2018

5.3 - 2018-11-19

Requires collectorforopenshift version 5.3 or above (see https://www.outcoldsolutions.com for latest configuration)

  • Fixed: Improved Workload dashboard. Allows to filter by namespace, see all Pods in a specific namespace, filter by workload label.
  • New: Alert for showing when Collectord reports errors in Processing pipelines (as an example if it failed to extract fields).
  • New: Alert for showing when Collectord reports warnings.
  • Fixed: Add node labels filter to Storage Dashboard and Control Plane Dashboards.
  • New: Alert if lag in the indexing of the data.
  • New: Splunk Usage (License usage, number of events) report under Setup.
  • Fixed: misprint in Builds dashboard.
  • Fixed: adjusted high amount of errors to Kubernetes API dashboard to make it less verbose.

https://www.outcoldsolutions.com/docs/monitoring-openshift/release-history/
Version 5.2.180
Oct. 28, 2018

5.2.180 - 2018-10-28
- Fixed: lookup with alerts causing very often replication activities on SHC

5.2.179 - 2018-10-17
- Fixed: changed search time for few alerts that cause false positives with indexing lag on large installations

5.2 - 2018-10-15

Requires collectorforopenshift version 5.2 or above (see https://www.outcoldsolutions.com for latest configuration)

  • New: Review/Storage dashboard based on storage metrics and PVC metrics.
  • New: predefined alerts to help you monitor the health of the clusters and performance of the applications.
  • Fixed: Performance improvements
    ...

For details https://www.outcoldsolutions.com/docs/monitoring-openshift/release-history/
Version 5.2.179
Oct. 17, 2018

5.2.179 - 2018-10-17
- Fixed: changed search time for few alerts that cause false positives with indexing lag on large installations

5.2 - 2018-10-15

Requires collectorforopenshift version 5.2 or above (see https://www.outcoldsolutions.com for latest configuration)

  • New: Review/Storage dashboard based on storage metrics and PVC metrics.
  • New: predefined alerts to help you monitor the health of the clusters and performance of the applications.
  • Fixed: Performance improvements
    ...

For details https://www.outcoldsolutions.com/docs/monitoring-openshift/release-history/
Version 5.2.177
Oct. 15, 2018

5.2 - 2018-10-15

Requires collectorforopenshift version 5.2 or above (see https://www.outcoldsolutions.com for latest configuration)

  • New: Review/Storage dashboard based on storage metrics and PVC metrics.
  • New: predefined alerts to help you monitor the health of the clusters and performance of the applications.
  • Fixed: Performance improvements
    ...

For details https://www.outcoldsolutions.com/docs/monitoring-openshift/release-history/
Version 5.1.175
Sept. 17, 2018
  • New: Network metrics (MB, Packets, Drops and Errors) for host and containers.
  • New: Network socket tables (list of port that containers and hosts are listen on, connections to external resources).
  • New: Network review dashboard to see the list of connection to public services and in private network.
  • Improvement: Replace python-based lookup with macro written with eval.
  • Improvement: Visual improvement for showing when the object was Last Seen (highlighting and showing minutes ago).
    ... and more

https://www.outcoldsolutions.com/docs/monitoring-openshift/release-history/
Version 5.0.174
Sept. 4, 2018

Highlights:
- Application logs
- Annotations for fields extraction, hiding sensitive information, time extraction, redirecting to /dev/null, stripping terminal colors and more

For more details:
https://www.outcoldsolutions.com/docs/monitoring-openshift/release-history/
Version 4.0.24
May 15, 2018
  • New dashboard: Cluster/Audit
  • New dashboard: Cluster/API Server
  • New dashboard: Cluster/Controller
  • New dashboard: Cluster/Kubelet
  • New dashboard: Cluster/etcd
  • Include image name, when list containers.
  • Added syslog component to the list of host logs.
  • Fixed: Include Daemon Set on Overview dashboard, list of projects.
  • Fixed: Broken navigation from the list of deployments.
Version 3.0.23
Feb. 17, 2018

3.0.23 - bug fixes release

3.0.22
New overview, security and capacity dashboards. Workload aggregation dashboard.
A lot of of bug fixes and performance improvements.

Relese Notes: https://www.outcoldsolutions.com/docs/monitoring-openshift/release-history/#30-2018-02-07
Upgrade instructions: https://www.outcoldsolutions.com/docs/monitoring-openshift/upgrade-2-to-3/
Requires collectorfor openshift version 3.0 or above (see https://www.outcoldsolutions.com for latest configuration)
Version 3.0.22
Feb. 8, 2018

New overview, security and capacity dashboards. Workload aggregation dashboard.
A lot of of bug fixes and performance improvements.

Relese Notes: https://www.outcoldsolutions.com/docs/monitoring-openshift/release-history/#30-2018-02-07
Upgrade instructions: https://www.outcoldsolutions.com/docs/monitoring-openshift/upgrade-2-to-3/
Requires collectorfor openshift version 3.0 or above (see https://www.outcoldsolutions.com for latest configuration)
Version 2.1.21
Jan. 2, 2018

2.1.21 - 2018-01-02

Requires collectorforopenshift version 2.1.62.171219 or above

  • Updated author and description

2.1 - 2017-12-20

Monitoring Openshift 2.1

Requires collectorforopenshift version 2.1.62.171219 or above

  • Initial release for Monitoring OpenShift
Version 2.1.18
Dec. 22, 2017

Monitoring Openshift 2.1

Requires collectorforopenshift version 2.1.62.171219 or above

  • Initial release for Monitoring OpenShift
10,471
Downloads
Share Subscribe LOGIN TO DOWNLOAD
Version
Built by
Outcold Solutions LLC
Support
Developer Supported
Contact Developer Questions on Splunk Answers Flag as inappropriate
Compatibility
This version of the app (5.23.430) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.22.422) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.22.420) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.21.410) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.20.400) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.19.390) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.18.380) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.17.372) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.17.371) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.17.370) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.16.363) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.16.361) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.16.360) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.16.350) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.15.300) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.14.280) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.12.272) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.12.271) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.12.270) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.11.260) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.10.250) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.9.240) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.8.231) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.8.230) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.7.220) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.6.212) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.5.202) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.4.201) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.4.200) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.3.190) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.2.180) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.2.179) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.2.177) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.1.175) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (5.0.174) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (4.0.24) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (3.0.23) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (3.0.22) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (2.1.21) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
This version of the app (2.1.18) is not available for Splunk Cloud. However, version 5.24.440 of this app is available for Splunk Cloud.
Products: Splunk Enterprise, Splunk Cloud Products: Splunk Enterprise, Splunk Cloud Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise Products: Splunk Enterprise
Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.3, 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.2, 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.1, 7.0 Platform: Platform Independent Splunk Versions: 7.0 Platform: Platform Independent Splunk Versions: 7.0 Platform: Platform Independent Splunk Versions: 7.0 Platform: Platform Independent
Licensing
END-USER LICENSE AGREEMENT
Category & Contents
Categories: IT Operations, DevOps
App Type: App
Subscribe Share

Are you a developer?

As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.

Submit New Splunk App Dev Resources
PLATFORM
Data-to-Everything Platform
Splunk Cloud
Splunk Enterprise
Splunk Machine Learning Toolkit
Splunk Data Stream Processor
Pricing
Free Trials & Downloads
SECURITY PRODUCTS
Splunk Enterprise Security
Splunk Phantom
Splunk Mission Control
Splunk User Behavior Analytics
IT OPERATIONS & OBSERVABILITY PRODUCTS
Splunk Infrastructure Monitoring
Splunk IT Service Intelligence
Splunk Application Performance Monitoring
Splunk On-Call
SOLUTIONS BY INITIATIVE
Cloud Transformation
SOLUTIONS BY FUNCTION
Security
IT
Devops
SOLUTIONS BY INDUSTRY
Aerospace & Defense
Communications
Energy & Utilities
Financial Services
Healthcare
Higher Education
Manufacturing
Nonprofits
Online Services
Public Sector
Retail
WHY SPLUNK?
Why Splunk?
Customer Stories
Partners
Data-to-Everything
Diversity & Inclusion
SUPPORT
Support Portal
Support Programs
Splunk Answers
Contact Us
Product Security Updates
RESOURCES
Events
Webinars
Blogs
Customer Success
Expert Services
Data Insider
View All Resources
FOR DEVELOPERS
Documentation
Best Practices
Get Started with Splunk
Training & Certification
User Groups
Community
Splunkbase
Splunk dev
COMPANY
About Splunk
Careers
Leadership
Splunk for Good
Splunk Ventures
Splunk Protects
Newsroom
COVID-19 Response
SPLUNK SITES
.conf
Splunk Live!
T-Shirt Store
Investor Relations
Follow Us:
© 2005-2025 Splunk LLC All rights reserved.
Sitemap | Privacy | Website Terms of Use | Splunk Licensing Terms | Export Control | Modern Slavery Statement | Splunk Patents | Report a Problem
Splunk, Splunk>,Turn Data Into Doing, Data-to-Everything, and D2E are trademarks or registered trademarks of Splunk LLC in the United States and other countries. All other brand names,product names,or trademarks belong to their respective owners.