Getting Data In

how can I analyze logs and extract fields from network device

New Member

Even though I collected some logs from network device, like Cisco switch and firewall. but how can I analyze them and extract fields?
Splunk only supply a source "Cisco:asa", but it can only identify less fields from network device logs. Shall I extract them manually or there's another plugins to solve this problem?

0 Karma


Hi @lllidan,
see in if there's a Technical Add-on for your device that gives you all the needed extractions: probably this is what you're searching .
I'm sure that you'll find what you need, but otherwise, you can use a regex for this extraction.


0 Karma
Take the 2021 Splunk Career Survey

Help us learn about how Splunk has
impacted your career by taking the 2021 Splunk Career Survey.

Earn $50 in Amazon cash!