Please help us for how Splunk can be utilized to provide monitoring for Cisco ASA.
Just a quick doubt, would this also help in monitoring ASA health parameters?
take a look at the apps for CISCO ASA apps:
- the cisco security suite https://splunkbase.splunk.com/app/525/
- the cisco ASA add-on specific for those logs. https://splunkbase.splunk.com/app/1620/
The add-on documentation explains how to collect the logs and assign the correct sourcetypes
The Suite has many built in dashboard and data enrichment to start working with.