All Apps and Add-ons
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to set up the Splunk Add-on for Cisco ASA on a Windows server?

ntdung
New Member
‎11-21-2014 09:31 AM

Dear all,
I'm a newbie:)
Is there anybody that can help run me through the step by step process to set up the Splunk Add-on for Cisco ASA on a Windows Server?

Many thanks!

0 Karma
Reply

jcoates_splunk
Splunk Employee
Splunk Employee
‎02-16-2015 09:38 AM

Hi, the key to understanding this is that the ASA add-on doesn't gather data, it models it. You need to configure Splunk to receive the data and set a sourcetype that tells the knowledge mapping in the Addon to apply.

If your devices are already configured to write logs into a syslog server, you can just monitor the directory. If you are starting from scratch, you can have the devices send syslog straight to Splunk by adding a network input.

0 Karma
Reply

demonio316
New Member
‎04-30-2015 11:56 AM

You did NOT answer his question.

0 Karma
Reply

jcoates_splunk
Splunk Employee
Splunk Employee
‎04-30-2015 03:50 PM

Hi, that's a good reason to use the down-vote button to the left of my answer.

Reply

dgahagan
New Member
‎12-04-2014 06:36 AM

Would be interested in this as well. I HAD it working but upgraded to v3.1.0 of the Splunk TA Add-on for cisco ASA and that broke everything.

0 Karma
Reply
Get Updates on the Splunk Community!

SplunkTrust Application Period is Officially OPEN!

It's that time, folks! The application/nomination period for the 2025 SplunkTrust is officially open! If you ...

Splunk Answers Content Calendar, June Edition II

Get ready to dive into Splunk Dashboard panels this week! We'll be tackling common questions around ...

Splunk Observability Cloud's AI Assistant in Action Series: Auditing Compliance and ...

This is the third post in the Splunk Observability Cloud’s AI Assistant in Action series that digs into how to ...
Top