Splunk Search

How to write this Simple text input search

joey19154
New Member

Hello everyone,

 

I'm looking to make a simple search form with a few text inputs and a drop-down box to search for firewall logs. I would like the output to be shown as events. My company has Palo Alto and Cisco ASA firewalls. All logs are sent to splunk. 

Input text boxes would be: 

1.) Source  2.) Destination 3.) Port

Drop-down box would be:

1.) allow  2.) not equal to allow

**For the text inputs I would like all of the fields to be optional in case I don't want to use all 3**

 

Is there an easy way to accomplish this?

 

Thank you in advance. 

 

 

Labels (3)
Tags (2)
0 Karma

ITWhisperer
SplunkTrust
SplunkTrust

Start by loading the examples app from splunkbase https://splunkbase.splunk.com/app/1603/ 

There are lots of examples of how to build dashboards include tables and inputs

0 Karma
Get Updates on the Splunk Community!

Webinar Recap | Revolutionizing IT Operations: The Transformative Power of AI and ML ...

The Transformative Power of AI and ML in Enhancing Observability   In the realm of IT operations, the ...

.conf24 | Registration Open!

Hello, hello! I come bearing good news: Registration for .conf24 is now open!   conf is Splunk’s rad annual ...

ICYMI - Check out the latest releases of Splunk Edge Processor

Splunk is pleased to announce the latest enhancements to Splunk Edge Processor.  HEC Receiver authorization ...