https://community.splunk.com/t5/Getting-Data-In/Splunk-network-monitoring/m-p/402048#M71528 <P>Splunk is a data tool, for it to help you with those issues, you would need to provide the information required to identify the issue.</P> <P>specifically I need to catch network errors for things like, </P> <OL> <LI>dropped packets or connections</LI> </OL> <P>You will need to define what you mean here, packets are dropped on networks all the time. </P> <OL> <LI><P>any kind of network error</P></LI> <LI><P>blockage by firewall or switch ACL</P></LI> <LI><P>any other form of connection data</P></LI> </OL> Fri, 18 May 2018 13:12:04 GMT solarboyz1 2018-05-18T13:12:04Z https://community.splunk.com/t5/Getting-Data-In/Splunk-network-monitoring/m-p/402047#M71527 <P>Hello, I am trying to figure out hwo we can use Splunk to monitor and report on our network, </P> <P>specifically I need to catch network errors for things like, </P> <OL> <LI>dropped packets or connections</LI> <LI>any kind of network error</LI> <LI>blockage by firewall or switch ACL</LI> <LI>any other form of connection data</LI> </OL> <P>I tried Splunk Stream, which gives us a lot of data of general chatter and bandwidth info, but its not very useful for detecting network errors or troubleshooting problems</P> <P>Is there an app or examples on how to set something like this up? Thanks.</P> Thu, 17 May 2018 15:44:47 GMT https://community.splunk.com/t5/Getting-Data-In/Splunk-network-monitoring/m-p/402047#M71527 perfecto25 2018-05-17T15:44:47Z https://community.splunk.com/t5/Getting-Data-In/Splunk-network-monitoring/m-p/402048#M71528 <P>Splunk is a data tool, for it to help you with those issues, you would need to provide the information required to identify the issue.</P> <P>specifically I need to catch network errors for things like, </P> <OL> <LI>dropped packets or connections</LI> </OL> <P>You will need to define what you mean here, packets are dropped on networks all the time. </P> <OL> <LI><P>any kind of network error</P></LI> <LI><P>blockage by firewall or switch ACL</P></LI> <LI><P>any other form of connection data</P></LI> </OL> Fri, 18 May 2018 13:12:04 GMT https://community.splunk.com/t5/Getting-Data-In/Splunk-network-monitoring/m-p/402048#M71528 solarboyz1 2018-05-18T13:12:04Z https://community.splunk.com/t5/Getting-Data-In/Splunk-network-monitoring/m-p/402049#M71529 <P>What I meant to say:</P> <OL> <LI>dropped packets or connections</LI> <LI>any kind of network error</LI> <LI>blockage by firewall or switch ACL</LI> <LI>any other form of connection data</LI> </OL> <P>Configure switches/routers/firewall to syslog to your splunk instance. <BR /> Install the appropriate apps for the network devices used. </P> <P>You can install streams and capture the metadata, or configure netflow collectors and send to streams.<BR /> All depends on what you have available and what you are trying to do.</P> <P>But getting the logs from you network devices is probably a good first step and will meet many if not all of your needs. </P> Fri, 18 May 2018 13:20:23 GMT https://community.splunk.com/t5/Getting-Data-In/Splunk-network-monitoring/m-p/402049#M71529 solarboyz1 2018-05-18T13:20:23Z https://community.splunk.com/t5/Getting-Data-In/Splunk-network-monitoring/m-p/402050#M71530 <P>You may need to collect the following data in Splunk:</P> <P>*&gt;dropped packets or connections<BR /> *&gt;any kind of network error</P> <P>You can get this information from SNMP polling/traps or sFlow counters or certain NetFlow/IPFIX records</P> <P>*&gt;blockage by firewall or switch ACL<BR /> syslogs or NetFlow data</P> <P>*&gt;any other form of connection data<BR /> NetFlow, sFlow, IPFIX</P> <P>We are a Splunk partner and we provide all this data (except syslog, which is natively ingested by Splunk) with our product - NetFlow Optimizer.</P> <P>Try it for free by visiting <A href="https://www.netflowlogic.com/download/">https://www.netflowlogic.com/download/</A> </P> Wed, 13 Jun 2018 00:44:20 GMT https://community.splunk.com/t5/Getting-Data-In/Splunk-network-monitoring/m-p/402050#M71530 NetFlow_Logic 2018-06-13T00:44:20Z