All Apps and Add-ons
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Looking for Barracuda app that's compatible with Splunk 7x

johnward4
Communicator
‎04-08-2018 11:11 PM

Hey guys,
My having trouble finding a compatible Barracuda app with Splunk Enterprise 7x.. I've tried configuring 3 of the apps currently available with the logs that being sent to my Splunk instance via syslog over udp 514 but no luck so far.

0 Karma
Reply

twitek
New Member
‎04-09-2018 12:32 AM

Hi @johnward4,

which Barracuda product are you using?

The plugin provided by @deepashri_123 if for the WAF/ADC. If you are looking for the NextGen Firewall, the plugin would be: https://splunkbase.splunk.com/app/2634/

Hope this helps!

0 Karma
Reply

johnward4
Communicator
‎04-11-2018 01:29 PM

I have that add-on installed but the only eventtype that I'm seeing is err0r. The fields don't appear to be being extracted/normalized via the add-ons props and transforms. I have been testing the other apps available in splunkbase but most are outdated for my version of Splunk and having a difficult time finding an app that displays the barracuda data collected in dashboard visualization

0 Karma
Reply

twitek
New Member
‎04-12-2018 12:00 AM

There is a page that documents the required setup: https://campus.barracuda.com/product/cloudgenfirewall/doc/73719600/splunk-integration/?sl=AWK4o5wZN7...

It's worth noting that there are a few specific settings on the firewall that need to be configured in order for the dashboards to work correctly, in particular:

In "General Firewall Configuration"
* Application Control Logging: Log-All-Applications
* Activity Log Mode: Log-Pipe-Separated-Key-Value-List

If you look at the "Search" app of Splunk, do you see the raw data there?

Hope this helps!

0 Karma
Reply

deepashri_123
Motivator
‎04-08-2018 11:16 PM

Hey@johnward4,

You can refer this add-on:
https://splunkbase.splunk.com/app/3776/#/details

Let me know if this helps!!

0 Karma
Reply
Get Updates on the Splunk Community!

.conf25 Community Recap

Hello Splunkers, And just like that, .conf25 is in the books! What an incredible few days — full of learning, ...

Splunk App Developers | .conf25 Recap & What’s Next

If you stopped by the Builder Bar at .conf25 this year, thank you! The retro tech beer garden vibes were ...

Congratulations to the 2025-2026 SplunkTrust!

Hello, Splunk Community! We are beyond thrilled to announce our newest group of SplunkTrust members!  The ...