Page 1 of 1
Nagios Alerts to Splunk
Posted: Tue May 25, 2021 12:43 am
by krupats
Hi,
How we can push only Nagios alerts to Splunk via Heavy Forwarder agent?
Regards,
Krupa
Re: Nagios Alerts to Splunk
Posted: Tue May 25, 2021 5:49 pm
by ssax
You would need to reach out to Splunk for information on how to configure their agent (based on a quick google search they may have a solution for you), we don't have any experience with it.
For the XI side, you could write a global notification handler script that you can setup in Admin > Manage Components > Global Event Handlers > Notifications tab that would fire for every notification.