×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
itimz5
Engager
Member since: ‎03-04-2013
‎06-23-2020
Community Statistics
Posts 2
Solutions 0
Karma Given 1
Karma Received 0
Member Since ‎03-04-2013
Activity Feed
Topics I've Started
View All

Re: Host name and src_ip

by in Getting Data In
‎06-20-2020 02:12 PM
‎06-20-2020 02:12 PM
 I do run dhcp but my network devices are static so I’ll give it a try.  Thanks for the info! ... View more

Host name and src_ip

by in Getting Data In
‎06-20-2020 04:34 AM
‎06-20-2020 04:34 AM
Greetings, I am new to Splunk, but do understand most of the concepts since we use the product at work with various forwarders, etc. I am running Splunk server on a small Mini Windows 10 system with SplunkStream enabled. I am ingesting packets via a separate dedicated NIC I have setup to receive from a smart switch using port mirroring. I get plenty of useful data and SplunkStream is great, but I would like to somehow transform the inbound IP address to the host name. I only ever have one host name in the logs obviously for my Splunk host. Many of the logs I drill into and even the chart data shows the src_ip for all the host activity on my network. Appreciate any information and\or assistance to make this happen if it's possible. Hopefully I am describing the situation clearly.   Thanks! ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎06-23-2020 07:00 PM
Karma given to
View All