Splunk Enterprise

Ironstream Data Monitor Json data Ingestion

Maxime
Loves-to-Learn

Hello,

I installed on Splunk IronStream Data Monitor to receive Json data created by an IBM i server and transmitted by python code. I can also send the data in syslog format.

I searched but I didn’t find documentation on how to set it on Splunk to receive the data.

I would also like to know if there are specific column names for the SIEM to understand the data received.

Example in my json file the Remote_IP column is the area that retrieves the attacker’s ip address.

thanks for reading.

Labels (2)
0 Karma
Get Updates on the Splunk Community!

Splunk Smartness with Brandon Sternfield | Episode 3

Hello and welcome to another episode of "Splunk Smartness," the interview series where we explore the power of ...

Monitoring Postgres with OpenTelemetry

Behind every business-critical application, you’ll find databases. These behind-the-scenes stores power ...

Mastering Synthetic Browser Testing: Pro Tips to Keep Your Web App Running Smoothly

To start, if you're new to synthetic monitoring, I recommend exploring this synthetic monitoring overview. In ...