It seems like Zenoss Core does what Splunk does, but not the other way round (from what I've read). That is, Zenoss can take syslog in and create events that you can then view on the server, and create alerts from. I've never implemented Splunk mostly because it seems redundant to me as I've already got Zenoss and legacy syslog-ng servers.
In your situation, I'd look at what the community Zenpacks say, search the forums to get an idea of potential issues with the VMWare ones, consider also monitoring the guests as separate devices in your monitoring app of choice. Also look at Nagios plugins and the forums for clues of what problems, if any, the users have had integrating them with Zenoss. You shouldn't need programming as such - I do very little python, mostly copying snippets from the forum (or wiki) into the box in Zenoss and saying save. I have done some bash scripting for my own custom command datasources, but that isn't likely to be something you'll need right off. When I ask what do you mean by monitoring, I'm really asking you to consider what information do you want graphed. What service do you want checked for alerts. What sort of alerts do you want (just something is down, some value has gone outside of set bounds, something is outside of the trended predictive range). Do you consider writing a WQL statement for WMI checking programming? Specifying a perfmon counter or SNMP OID? What about inputting a command line to run a tool like a Nagios Plugin? With the number of devices, you probably don't want Zenoss Enterprise which if I recall correctly is a minimum of 50 monitored devices. Core will be able to handle that number of devices easily, though perhaps with a bit more grunt on the sever than you might expect. I'll bow out to see if anyone has used Splunk here and has some points they want to make. -- James Pulver Information Technology Area Supervisor LEPP Computer Group Cornell University tlyczko wrote, On 8/6/2009 9:30 AM: > That's a fair reply. Thank you. > > We don't have a large environment -- 9 physical boxes, 3 of which are ESX > hosts that will be more utilized over time, with probably 15 VMs now. > I don't mind learning the app etc., but I don't want to have to do > *programming* to get what I want/need -- as much as is reasonable to expect > out of the box is all I ask. > > No, we're a non-profit so being careful with money is important. > > I did email sales/info yesterday, I don't know when they will reply. > > I realize I may have to mix/match -- perhaps use both Zenoss and Splunk, I > don't know yet. > > Monitoring is not something like, say, Exchange or SQL, there's not > necessarily websites where one can go learn more on the topic of monitoring > per se. :) > > I'm still hoping someone will reply who's experience both softwares. > > Thank you, Tom > > > > > -------------------- m2f -------------------- > > Read this topic online here: > http://forums.zenoss.com/viewtopic.php?p=37710#37710 > > -------------------- m2f -------------------- > > > > _______________________________________________ > zenoss-users mailing list > [email protected] > http://lists.zenoss.org/mailman/listinfo/zenoss-users _______________________________________________ zenoss-users mailing list [email protected] http://lists.zenoss.org/mailman/listinfo/zenoss-users
