Splunk Search
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

How to configure Syslog on Wireless Router

thiliphk
New Member
‎12-21-2012 01:10 PM

Team,

Please guide me to configure my wireless router to send the data over to Splunk ( My laptop)

  1. How to validate whether Router sends syslog data to my Splunk installed in Laptop ?
  2. How do I configure my Laptop to receive / monitor syslog from wirlress router ?
Tags (1)
0 Karma
Reply

jcoates_splunk
Splunk Employee
Splunk Employee
‎12-21-2012 03:19 PM

i'd start with asking whether the router can emit syslog at all... you might need an alternate OS such as dd-wrt or openwrt.

0 Karma
Reply

jianwei
New Member
‎11-13-2013 10:07 PM

how to read to log from dd-wrt to splunk?

0 Karma
Reply

piebob
Splunk Employee
Splunk Employee
‎12-21-2012 03:11 PM

here are the instructions for adding a network input to Splunk:
http://docs.splunk.com/Documentation/Splunk/latest/Data/Monitornetworkports
you will need to ensure that your wireless access point actually does write syslog.

once you have confirmed this, and added the network input, you will be able to search for data from the device in your Splunk instance.

you might want to check out the Splunk tutorial if you are new to Splunk.

Reply

Ayn
Legend
‎12-21-2012 02:59 PM

How to configure a router to send syslog varies wildly from router to router (if the option to syslog exists at all - it often doesn't on cheaper models).

You can check that you're getting syslog by running some kind of network sniffer like tcpdump or Wireshark on your laptop.

As for the last question, this is a good point to start: http://docs.splunk.com/Documentation/Splunk/latest/Data/WhatSplunkcanmonitor

Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

[Puzzles] Solve, Learn, Repeat: Character substitutions with Regular Expressions

This challenge was first posted on Slack #puzzles channelFor BORE at .conf23, we had a puzzle question which ...

Splunk Community Badges!

  Hey everyone! Ready to earn some serious bragging rights in the community? Along with our existing badges ...

[Puzzles] Solve, Learn, Repeat: Matching cron expressions

This puzzle (first published here) is based on matching timestamps to cron expressions.All the timestamps ...