There are a lot of pre-existing searches that will allow for network monitoring with Splunk. Considering Matt's original email talking about monitoring additional applications (Custom apps?), Splunk just jumped to mind. Writing searches within splunk is pretty easy (Hell, *I* can do it! :)) so getting it to do both could be done well. I've heard some people say it was "difficult" to set up but did not have that experience myself. Bueller, Bueller?
I suppose if I were only interested in monitoring network traffic I could see using WireShark and Case? Just my two cents... Thank you, Chris Butler Infoscitex Corporation Systems Administrator 781/890-1338 x291 617/276-5099 (cell) -----Original Message----- From: [email protected] on behalf of apostolos pantazis Sent: Thu 4/15/2010 2:50 AM To: [email protected] Cc: [email protected] Subject: Re: [lopsa-tech] Performance monitoring That's a good point David; I suppose with some custom code writing you may be able to aggregate some of the data in a form that makes sense but strictly speaking out of the box likely would not do. On Wed, Apr 14, 2010 at 4:42 PM, <[email protected]> wrote: > How would splunk monitor performance? it 'just' imports logs and lets you > search/report on them. > > David Lang > > On Wed, 14 Apr 2010, apostolos pantazis wrote: > >> Splunk would be my choice. I also Like Sarcheck but I am not sure it >> would fulfill all your requirements. >> >> Slunk also scales quite nicely. >> >> On Wed, Apr 14, 2010 at 9:48 AM, Matt Lawrence <[email protected]> >> wrote: >>> >>> I have recently started a new job, that's why I'm asking questions here. >>> >>> I need to deploy some sort of performance monitoring tools across a few >>> hundred systems. In addition to the usual system performance stats, I >>> would like to find a set of tools that will easily allow me to collect >>> and >>> display various application level information. These are systems doing >>> lots of real time transaction processing, so being able to see the graphs >>> of what the applications are doing in sync with the system graphs would >>> be >>> a very good thing. >>> >>> The management structure here is that I am on the sysadmin team which >>> does >>> not do anything with the applications. So, being able to integrate the >>> data collection will make my life easier and make the application support >>> folks happier. >>> >>> I'm comfortable programming in C, Ruby & Perl, so writing additional code >>> to support monitoring is not a big worry. >>> >>> -- Matt >>> It's not what I know that counts. >>> It's what I can remember in time to use. >>> _______________________________________________ >>> Tech mailing list >>> [email protected] >>> http://lopsa.org/cgi-bin/mailman/listinfo/tech >>> This list provided by the League of Professional System Administrators >>> http://lopsa.org/ >>> >> >> >> > -- Paul _______________________________________________ Tech mailing list [email protected] http://lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
_______________________________________________ Tech mailing list [email protected] http://lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
