I would like to collect wildfire report from paloalto to splunk. Could you give me some instruction? Also, I are looking for the way to collect packet capture file from paloalto to splunk When I log into Paloalto via webUI, I click on monitor tab and click on Threat. If there is some pcap file in this area, I would like to send data to splunk. Could you give me how to configure on the splunk side? ... View more

以下のログを取り込むときに推奨のソースタイプを教えていただけますでしょうか。 ◆ログ一覧 ・IIS -> ? ・MS Exchange -> ? ・gmail -> CSV形式？ ・Firewall-1 -> chackpointのApps？ ・SonicWall　-> SonicWallのApps？ ・NetScreen/SSG -> SSGのApps? ・FortiGate -> FortiのApps? ・Proventia -> ProventiaのApps? ・Oracle　-> csv形式？ ・PostgreSQL　-> csv形式？ ・MySQL　-> csv形式？ ・DB2　-> csv形式？ English translation Can you tell us the recommended source type when importing the following logs? ◆ Log list ・ IIS->? ・ MS Exchange->? ・ Gmail-> CSV format? ・ Firewall-1-> Chackpoint Apps? ・ SonicWall-> SonicWall Apps? ・ NetScreen / SSG-> SSG Apps? ・ FortiGate-> Forti Apps? ・ Proventia-> Proventia Apps? ・ Oracle-> csv format? ・ PostgreSQL-> csv format? ・ MySQL-> CSV format? ・ DB2-> CSV format? ... View more

ダッシュボードをPDFでエクスポートしたところ、表示検知結果数は、20000件以上あるのに対して、 PDFでは1000件までの表示しかされませんでした。 これは仕様でしょうか。 ... View more

I tried to configure the AMP for Endpoints API Access on the Cisco AMP for Endpoints Events input app. However the configuration information is not working properly. I got error message which is stated "Warning! We couldn’t retrieve the information from API with provided credentials. Please make sure the API host is accessible or re-configure the input with correct credentials." AMP for Endpoints API Host: api.amp.cisco.com API Client ID : entered the client ID generated by Cisco AMP (API Client have read and write scope) API Key：　entered the secret API key generated by Cisco AMP If there is any instruction for setting of Cisco AMP for Endpoints Events input app? Best Regards, ... View more