...ourcetype of the CP logs to match it with theadd-on but still no luck. I am using SplunkAdd-onforCheckPointLogExporter. Appreciate your thoughts on this.
Hello, We are ingesting Checkpoint logs through an Edge Processor to our SCP. We have deployed SplunkAdd-onforCheckPointLogExporter in SCP but events are not parsing properly. I s...
...vailable.
Do the new fields get added to the events permanently so I dont need to issue thelookup command on every search command?
I wanted to be able to enrich the event log with one days w...
I'm seeing the error below under messages in my Splunk enterprise console:
Missing or malformed messages.conf stanza for TCPOUT:FORWARDING_BLOCKED_Indexer IP ADDress_default-autolb-group DC-Host N...