https://community.splunk.com/t5/Splunk-Cloud-Platform/Traffic-ingest-monitoring/m-p/660108#M2563 <P>Hi,</P><P>Connection metrics are logged by splunkd to metrics.log. To search metrics.log directly replace ... in the following search with a space-delimited list of your expected egress addresses:</P><P>index=_internal source=*metrics.log* host=idx-i-* group=tcpin_connections sourceIp IN (...)</P><P>The same data is also logged to the _metrics metrics index:</P><P>| mstats avg(spl.mlog.tcpin_connections._tcp_KBps) as KBps where index=_metrics group=tcpin_connections sourceIp IN (...) by sourceIp</P><P>You can use the search/jobs endpoint to run an asynchronous or blocking request to execute one of the search above. See&nbsp;<A href="https://docs.splunk.com/Documentation/SplunkCloud/9.0.2305/RESTREF/RESTsearch#search.2Fjobs" target="_blank">https://docs.splunk.com/Documentation/SplunkCloud/9.0.2305/RESTREF/RESTsearch#search.2Fjobs</A>&nbsp;for more information.</P> Mon, 09 Oct 2023 03:11:01 GMT tscroggins 2023-10-09T03:11:01Z https://community.splunk.com/t5/Splunk-Cloud-Platform/Traffic-ingest-monitoring/m-p/659306#M2537 <P>Hi to all,</P><P>I'm a newbee in Splunk and I need to check If the Splunk Cloud is receiving traffic form our network infrastructure. I have thought to do via API request but I don't find the url where to do the request.</P><P>Could anybody to send me where I can find documentation to do this??? Or how can I do this??</P><P>Thanks in advance!!</P><P>David.</P> Mon, 02 Oct 2023 14:15:24 GMT https://community.splunk.com/t5/Splunk-Cloud-Platform/Traffic-ingest-monitoring/m-p/659306#M2537 Babi2002 2023-10-02T14:15:24Z https://community.splunk.com/t5/Splunk-Cloud-Platform/Traffic-ingest-monitoring/m-p/660108#M2563 <P>Hi,</P><P>Connection metrics are logged by splunkd to metrics.log. To search metrics.log directly replace ... in the following search with a space-delimited list of your expected egress addresses:</P><P>index=_internal source=*metrics.log* host=idx-i-* group=tcpin_connections sourceIp IN (...)</P><P>The same data is also logged to the _metrics metrics index:</P><P>| mstats avg(spl.mlog.tcpin_connections._tcp_KBps) as KBps where index=_metrics group=tcpin_connections sourceIp IN (...) by sourceIp</P><P>You can use the search/jobs endpoint to run an asynchronous or blocking request to execute one of the search above. See&nbsp;<A href="https://docs.splunk.com/Documentation/SplunkCloud/9.0.2305/RESTREF/RESTsearch#search.2Fjobs" target="_blank">https://docs.splunk.com/Documentation/SplunkCloud/9.0.2305/RESTREF/RESTsearch#search.2Fjobs</A>&nbsp;for more information.</P> Mon, 09 Oct 2023 03:11:01 GMT https://community.splunk.com/t5/Splunk-Cloud-Platform/Traffic-ingest-monitoring/m-p/660108#M2563 tscroggins 2023-10-09T03:11:01Z