Re: Why are Splunk for Palo Alto Networks Traffic ...

rodgerkrau · ‎09-08-2014

Palo App for Splunk all of a sudden not displaying traffic dashboard or Wildfire. All other content working.

ccscott · ‎02-18-2015

This kinda sucks. I don't think it has ever worked though. Just one more thing in splunk that doesn't work and isn't supported by them. So far splunk has been the biggest waste of money ever.

madc0w · ‎12-05-2014

There is a bug and hopefully the developers will fix in a new version.

http://answers.splunk.com/answers/203043/pan-wildfirereport-and-pan-newapps-bug.html

rodgerkrau · ‎09-25-2014

Still an issue.. anyone else know a "fix"

ppablo · ‎09-25-2014

Hi @rodgerkrau

You might want to contact the developer of the app directly if you're not having any luck here in the Answers community. Their contact info is in the bottom right panel of the app's page http://apps.splunk.com/app/491/

rodgerkrau · ‎09-08-2014

I cant open an item directly (in the search) from the actual dashboard. no items display.

here is the code: | tstats sum(bytes_received) AS sbr sum(bytes_sent) AS sbs FROM pan_traffic WHERE earliest=-60m latest=now groupby app | eval sumBytes = sbr + sbs | stats values(sumBytes) AS Bytes by app

Lucas_K · ‎12-02-2014

Check that someone hasn't disabled any savedsearches or data models that these rely on.

rodgerkrau · ‎09-08-2014

I get results!

barakreeves · ‎09-08-2014

from the search, what happens when you run: sourcetype=pan_wildfire_report OR sourcetype=pan_traffic ?

Why are Splunk for Palo Alto Networks Traffic and Wildfire dashboards suddenly not displaying?

ICYMI - Check out the latest releases of Splunk Edge Processor

Introducing the 2024 SplunkTrust!

Introducing the 2024 Splunk MVPs!