Re: Network traffic flow to Splunk cloud instance

pavi_pavi_p · ‎01-07-2019

Hello Experts,

Kindly provide the guidelines on integrate Network traffic flow integration with Splunk cloud instance.

pavi_pavi_p · ‎01-09-2019

Hello Lakshman,

Thanks for your response.

UF can't be installed on network devices.

I want to see the real time network traffic flow on Splunk and let us the solution

lakshman239 · ‎01-09-2019

from your network devices, can you send the logs as syslog to a syslog server and configure splunk UF to read them and send it to cloud? This way you can send logs from more than one device [ via syslog] to syslog server [ e.g. rsyslog or syslog-ng installed on a linux platform] and onward to splunk cloud.

Pls also raise a support case with splunk cloud to agree the approach.

pavi_pavi_p · ‎01-08-2019

Hello Experts,

Any inputs!!!

lakshman239 · ‎01-08-2019

Have you looked at https://answers.splunk.com/answers/305080/what-are-my-options-in-splunk-for-monitoring-netop.html ?

Are you trying to on-board data from a particular vendor? did you check if there are any supporting add-ons?

Generally, if you can the logs/traffic on to a Universal forwarder (UF), that can be configured to send them to the splunk cloud [ you would need to work with cloud support to connect your UF to connect to cloud via certs]

pavi_pavi_p · ‎01-09-2019

Hello Lakshman,

Thanks for your response.

UF can't be installed on network devices.

I want to see the real time network traffic flow on Splunk and let us the solution on this.

Network traffic flow to Splunk cloud instance

Introducing the Splunk Community Dashboard Challenge!

Built-in Service Level Objectives Management to Bridge the Gap Between Service & ...

Get Your Exclusive Splunk Certified Cybersecurity Defense Engineer Certification at ...