All Apps and Add-ons
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Issues with “Proofpoint On-demand Email Security Add-on” from Splunkbase

Shravs
New Member
‎02-26-2021 09:18 AM

I have installed 'Proofpoint On-demand Email Security Add-on' on one of our HF. I have been experiencing a dip in the incoming emails while collecting Proofpoint logs to Splunk very frequently. This issue is occurring on a regular basis: We don't see any Proofpoint logs for 10 minutes (sometimes up to 3 hours) or so every now and then.

Does anyone have an idea of what is the issue here?

Labels (1)
Labels
0 Karma
Reply

Shravs
New Member
‎02-26-2021 01:27 PM

Hello @alonsocaio , I have configured both mail log and message log inputs. Also, I have set the retry interval to these inputs to "60"

0 Karma
Reply

alonsocaio
Contributor
‎02-26-2021 09:37 AM

Hi @Shravs,

Have you configured both Mail Log and Message Log inputs? Which is the retry interval you have set to this inputs?

Also, could you search for the name of the inputs on your _internal index? It is expected to have some access logs looking for the checkpoint files on the add-on.

0 Karma
Reply
Get Updates on the Splunk Community!

.conf25 Registration is OPEN!

Ready. Set. Splunk! Your favorite Splunk user event is back and better than ever. Get ready for more technical ...

Detecting Cross-Channel Fraud with Splunk

This article is the final installment in our three-part series exploring fraud detection techniques using ...

Splunk at Cisco Live 2025: Learning, Innovation, and a Little Bit of Mr. Brightside

Pack your bags (and maybe your dancing shoes)—Cisco Live is heading to San Diego, June 8–12, 2025, and Splunk ...