cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
vrattlesnake
Engager
Member since: ‎11-22-2018
‎06-05-2020
Community Statistics
Posts 8
Solutions 0
Karma Given 1
Karma Received 0
Member Since ‎11-22-2018
Activity Feed
View All

Re: How to pull logs from Symantec Protection Engi...

by in Monitoring Splunk
‎12-04-2018 12:11 AM
‎12-04-2018 12:11 AM
Thank you. ... View more

Re: How to pull logs from Symantec Protection Engi...

by in Monitoring Splunk
‎11-27-2018 02:11 AM
‎11-27-2018 02:11 AM
https://splunkbase.splunk.com/app/2772/ this is for SEP not SPE. https://www.symantec.com/connect/groups/symantec-apps-splunk I dont see SPE in this. So i guess Splunk forwarder is how i should proceed. I will look into it. Thanks. ... View more

Re: How to pull logs from Symantec Protection Engi...

by in Monitoring Splunk
‎11-26-2018 11:43 PM
‎11-26-2018 11:43 PM
QRadar has the ability to gather logs from sources (like SPE). I believe its using API. Is there something similar for Splunk? ... View more

How to pull logs from Symantec Protection Engine?

by in Monitoring Splunk
‎11-26-2018 09:26 PM
‎11-26-2018 09:26 PM
Can we pull the logs from Splunk end instead of sending them from Symantec Protection Engine using a third party tool? I know it is possible using QRadar, not sure how it works on Splunk. ... View more

Re: Is there a splunk agent for Symantec Protectio...

by in All Apps and Add-ons
‎11-26-2018 09:23 PM
‎11-26-2018 09:23 PM
How about pulling the logs from Splunk instead of sending them from SPE using a third party tool? I know it is possible using QRadar, not sure how it works on Splunk. Any thoughts there? ... View more

Re: Is there a splunk agent for Symantec Protectio...

by in All Apps and Add-ons
‎11-25-2018 11:46 PM
‎11-25-2018 11:46 PM
Thanks Rich. I did look at the doc, it basically says use rsyslog and forward it to Splunk. I cannot afford a new machine for this. So i guess theres no splunk agent for this and i should use rsyslog or some other log forwarded. ... View more

Is there a splunk agent for Symantec Protection En...

by in All Apps and Add-ons
‎11-22-2018 09:12 PM
‎11-22-2018 09:12 PM
Would like to know if theres a splunk agent for Symantec Protection Engine. If not, what are the options to get the events to Splunk? SPE does not have an option to fwd the syslogs by itself. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM
Karma given to
View All