Splunk messing up Nagios?
Posted: Wed Apr 25, 2012 12:16 pm
Hello, I'm a long time Nagios user, first time poster.
I have an installation for Nagios running on a RHEL5 box that has been running fine. Recently however In installed Splunk on the same server and configured it to ingest the /var/log/messages files. Both Nagios and Splunk seemed to play nicely for a few days, but then all of a sudden Nagios starts reporting that the SWAP on all my Solaris machines is critical. This is not true however and I can't figure out why it's giving a false reading and only on Solaris machines. I'm not using NRPE either. All my Linux machines are reporting correctly. Has anyone seen this kind of behavior before with splunk installed? If I uninstall Splunk it all goes back to normal. It's so strange I hope I'm not the only one.
I have an installation for Nagios running on a RHEL5 box that has been running fine. Recently however In installed Splunk on the same server and configured it to ingest the /var/log/messages files. Both Nagios and Splunk seemed to play nicely for a few days, but then all of a sudden Nagios starts reporting that the SWAP on all my Solaris machines is critical. This is not true however and I can't figure out why it's giving a false reading and only on Solaris machines. I'm not using NRPE either. All my Linux machines are reporting correctly. Has anyone seen this kind of behavior before with splunk installed? If I uninstall Splunk it all goes back to normal. It's so strange I hope I'm not the only one.