Deployment Architecture
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Indexed IPv6 address from application

bogdan_nicolesc
Communicator
‎04-02-2019 07:16 AM

Hi all,

I have an issue with data collected.

I set up Splunk to index "Splunk network monitoring" and I get data in from Google chrome as this:

AddressFamily=ipv6
AddressFamilyId=23
PacketType=connect
PacketTypeId=0
Direction=outbound
Protocol=TCP
ProtocolId=6
LocalAddress=::1
LocalPort=65343
RemoteHostName=50f9:1fe9:ad00:0:3800::
RemoteAddress=::1
RemotePort=9229
ProcessName="c:\program files (x86)\google\chrome\application\chrome.exe"
UserName="ffff.ffff"
UserSid=s-1-5-21.dddd.dddd.dddd.dddd
UserId=0-dddd
HeaderSizeBytes=0
IPsecProtected=0
TransportHeaderSizeBytes=0

I wonder, how do I find what or who or why is RemoteHostName= and who/what/why 50f9:1fe9:ad00:0:3800::

I tried to google, to ping, or other type of means to search that IP to no avail.

Thank you,

Bogdan

Tags (1)
0 Karma
Reply
Get Updates on the Splunk Community!

Splunk APM & RUM | Upcoming Planned Maintenance

There will be planned maintenance of the streaming infrastructure for Splunk APM and Splunk RUM in the coming ...

Part 2: Diving Deeper With AIOps

Getting the Most Out of Event Correlation and Alert Storm Detection in Splunk IT Service Intelligence   Watch ...

User Groups | Upcoming Events!

If by chance you weren't already aware, the Splunk Community is host to numerous User Groups, organized ...