Mikrotik APP and ES

ashkanarjmand · ‎05-18-2021

Hi

for getting mikrotik logs in splunk i use mikrotik app.
i have a problem with show mikrotik events in splunk Enterprise Security (ES), nothing show. i have around 10M logs in splunk but all of my notables in ES are empty!
what can i do ?

in the first picture: 192.168.110.1 is my mikrotik routerboard:

in the second picture: as you see i have too many DNS activity:

and i the third picture: in ES APP nothing show:

i this picture: 192.168.110.1 is my mikrotik routerboard:as you see i have too many DNS activity:but i ES nothing show:

zandhaas · ‎11-09-2021

Look at the corresponding thread on the Mikrotik forum:

https://forum.mikrotik.com/viewtopic.php?t=179960

ashkanarjmand · ‎05-19-2021

no one answer me?

Mikrotik APP and ES

encryption

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Announcing Modern Navigation: A New Era of Splunk User Experience

Observability Simplified: Combining User Experience, Application Performance & ...

Event Series May & June: From Network Visibility to Service Intelligence

Join the Conversation

Mikrotik APP and ES

encryption

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Announcing Modern Navigation: A New Era of Splunk User Experience

Observability Simplified: Combining User Experience, Application Performance & ...

Event Series May & June: From Network Visibility to Service Intelligence