All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

srx_log srx_traffic

anywhere99
Explorer
‎07-03-2014 06:25 AM

Hi I have a problem with the transform.conf, the logs are not parse from the log source srx_log - to be slit up to eventtype= srx_traffic and srx_threat.

So the app dashboard and so on does not show any data, but the logs are coming in as srx_log
Any suggestions?

Tags (1)
0 Karma
Reply

anywhere99
Explorer
‎07-03-2014 06:31 AM

Solved, set the traffic log in the srx to structured data.
Thanks Splunk support for the auto combination 😃

0 Karma
Reply
Get Updates on the Splunk Community!

Bridging the Gap: Splunk Helps Students Move from Classroom to Career

The Splunk Community is a powerful network of users, educators, and organizations working together to tackle ...

Preparing your Splunk Environment for OpenSSL3

The Splunk platform will transition to OpenSSL version 3 in a future release. Actions are required to prepare ...

Unleash Unified Security and Observability with Splunk Cloud Platform

     Now Available on Microsoft AzureThursday, March 27, 2025  |  11AM PST / 2PM EST | Register NowStep boldly ...