Installation
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

sample cisco log data with sourcetype= cisco_wsa_squid

jcorcoran508
Path Finder
‎08-31-2021 02:05 PM

Greetings:

 

In search of Cisco sampling logs with the sourctype=cisco_wsa_squid to  sharpen my spl .

Can any one point me to a location of such log for download ?

Labels (1)
Labels
Tags (1)
0 Karma
Reply

venkatasri
SplunkTrust
SplunkTrust
‎08-31-2021 07:11 PM

Hi @jcorcoran508 

is this what you are looking for ? sourcetypes are here,

Source types for the Splunk Add-on for Cisco WSA - Splunk Documentation

if your admin allowed your role to do a index=* search you could try something like this to find the logs.

index=* sourcetype=cisco:wsa:squid*

 If you aware of index just replace it.

---

An upvote would be appreciated if this reply helps! 

0 Karma
Reply

jcorcoran508
Path Finder
‎09-01-2021 03:51 AM

Thanks for the tip.   

No I was actually looking for sample cisco logs to upload in my test splunk box, so I can run some SPL against it.   

can you help ?

0 Karma
Reply

jcorcoran508
Path Finder
‎09-05-2021 06:39 AM

I didn't find what I was looking for. However I found this website that offer datasets / logs

https://www.kaggle.com/

 

0 Karma
Reply
Get Updates on the Splunk Community!

Index This | I’m short for "configuration file.” What am I?

May 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with a Special ...

New Articles from Academic Learning Partners, Help Expand Lantern’s Use Case Library, ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...

Your Guide to SPL2 at .conf24!

So, you’re headed to .conf24? You’re in for a good time. Las Vegas weather is just *chef’s kiss* beautiful in ...