All Apps and Add-ons

Issues with “Proofpoint On-demand Email Security Add-on” from Splunkbase

Shravs
New Member

I have installed 'Proofpoint On-demand Email Security Add-on' on one of our HF. I have been experiencing a dip in the incoming emails while collecting Proofpoint logs to Splunk very frequently. This issue is occurring on a regular basis: We don't see any Proofpoint logs for 10 minutes (sometimes up to 3 hours) or so every now and then.

Does anyone have an idea of what is the issue here?

Labels (1)
0 Karma

Shravs
New Member

Hello @alonsocaio , I have configured both mail log and message log inputs. Also, I have set the retry interval to these inputs to "60"

0 Karma

alonsocaio
Contributor

Hi @Shravs,

Have you configured both Mail Log and Message Log inputs? Which is the retry interval you have set to this inputs?

Also, could you search for the name of the inputs on your _internal index? It is expected to have some access logs looking for the checkpoint files on the add-on.

0 Karma
Get Updates on the Splunk Community!

Adoption of RUM and APM at Splunk

    Unleash the power of Splunk Observability   Watch Now In this can't miss Tech Talk! The Splunk Growth ...

March Community Office Hours Security Series Uncovered!

Hello Splunk Community! In March, Splunk Community Office Hours spotlighted our fabulous Splunk Threat ...

Stay Connected: Your Guide to April Tech Talks, Office Hours, and Webinars!

Take a look below to explore our upcoming Community Office Hours, Tech Talks, and Webinars in April. This post ...