Re: monitor cisco switch environment

kschoeck · ‎05-03-2012

I would like to monitor about 15 cisco devicces on my network. 3 ASA devices, 4 l3 switches and the rest are L2 switches. what option/product is best?

Baba_19 · ‎02-07-2018

hello, we are the world best software provider if you facing any problem so we stand for your help and solve your any problems.
TP-Link Router Support

sdaniels · ‎05-03-2012

Ideally you could have syslong-NG or rsyslog output that data to a file and Splunk would monitor that way. However, if that's not available you would have a forwarder installed and have the syslog data come in from your network devices via UDP or TCP.

http://docs.splunk.com/Documentation/Splunk/latest/Data/SyslogUDP

This is a great app to look at as well -> http://splunk-base.splunk.com/apps/22300/cisco-security-suite. Dashboard views, reports, field extractions and content for your Cisco devices.

splunkfly · ‎04-13-2016

I'm getting syslog messages from switches into /var/logs/syslog. and on top of it I have also installed universalforwarder on syslog-ng server.

I need to know the process to seperate the syslogs for each switch and router and send the data to cisco networks app on the splunk.

Please guild me

gooza · ‎05-03-2012

have you tried collecting the syslogs and using

splunk cisco-security-suite

splunkfly · ‎04-13-2016

I'm getting syslog messages from switches into /var/logs/syslog. and on top of it I have also installed universalforwarder on syslog-ng server.

I need to know the process to seperate the syslogs for each switch and router and send the data to cisco networks app on the splunk.

Please guild me

monitor cisco switch environment

Enterprise Security Content Update (ESCU) | New Releases

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

Index This | What are the 12 Days of Splunk-mas?