Dashboards & Visualizations

Pan:hipmatch

Splunkers2
Observer

Hi all,
I am trying to understand data in sourcetype=pan:hipmatch for a VPN posture check use case. Has anyone developed or know of any dashboards developed on pan:hip match data and what fields can be use to correlate it with pan:globalprotect. Appreciate any pointers

Labels (1)
0 Karma

marnall
Motivator

That looks like a Palo Alto Networks sourcetype. This documentation implies that these sourcetypes were used in a Palo Alto Networks app that is out of date, but has links for upgrading to the new app: https://pan.dev/splunk/docs/tune-or-reduce-firewall-logs/

I would expect that at least one of the Palo Alto Apps would include a dashboard and field extractions for pan:* sourcetypes.

0 Karma
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Best Practices: Splunk auto adjust pipeline queue

When you enable autoAdjustQueue in Splunk, maxSize should be understood as the queue size Splunk starts with ...

Laser Bananas and Edge Hubs: Exploring Operational Technology (OT) Data Through a ...

  OT is a different environment to traditional IT and can have interesting challenges when interfacing the ...

Event Series: Mastering AI Tokenomics and Splunk Agent Observability

Beyond the Black Box: Correlating AI Performance and Tokenomics with Splunk Agent Observability   As ...