Community discussions

Search found 8 matches

by JieYu2001
Tue Feb 12, 2019 9:26 am
Forum: Useful user articles
Topic: Using Splunk to analyse MikroTik logs 2.7 (Graphing everything) Topic is solved
Replies: 232
Views: 73494

Re: Using Splunk to analyse MikroTik logs 2.6 (Graphing everything) Topic is solved

Thanks Jotne - the issue is resolved. In the MK Logging setting, I checked "BSD Syslog" which caused issue (still don't know why since that is the correct syslog protocol supported in Splunk). Uncheck it and things look fine now.
by JieYu2001
Mon Feb 11, 2019 10:04 am
Forum: Useful user articles
Topic: Using Splunk to analyse MikroTik logs 2.7 (Graphing everything) Topic is solved
Replies: 232
Views: 73494

Re: Using Splunk to analyse MikroTik logs 2.6 (Graphing everything) Topic is solved

Hi Jotne ~ some progress - for some reason, the "Module" field picks up part of the timestamp (the Month) since their is no syslog field name for some reason (the event item format difference I mentioned). After tweaking the Volt/Temperature code (removing the module key from the search), I was able...
by JieYu2001
Mon Feb 11, 2019 9:17 am
Forum: Useful user articles
Topic: Using Splunk to analyse MikroTik logs 2.7 (Graphing everything) Topic is solved
Replies: 232
Views: 73494

Re: Using Splunk to analyse MikroTik logs 2.6 (Graphing everything) Topic is solved

Thanks again Jotne. Here's a screenshot. Seems the Splunk events have the right contents, but the format is different from yours. Splunk MikroTik 2.6 Event Snapshots.png Basically, before the identifier "MikroTik", there are timestamps and another "MikroTik", but without the log field name like "dns...
by JieYu2001
Thu Feb 07, 2019 10:26 am
Forum: Useful user articles
Topic: Using Splunk to analyse MikroTik logs 2.7 (Graphing everything) Topic is solved
Replies: 232
Views: 73494

Re: Using Splunk to analyse MikroTik logs 2.6 (Graphing everything) Topic is solved

Hi I followed your first post but skipped 2c~2e (FW/NAT/Traffic logging since not sure about the detailed steps). I did have Home Monitor app before that affected the MikroTik data inputs, and I have it removed so the data inputs seems right (though not complete if without 2c~2e). The question I hav...
by JieYu2001
Thu Feb 07, 2019 6:19 am
Forum: Useful user articles
Topic: Using Splunk to analyse MikroTik logs 2.7 (Graphing everything) Topic is solved
Replies: 232
Views: 73494

Re: Using Splunk to analyse MikroTik logs 2.6 (Graphing everything) Topic is solved

Hi Jonte, here're three snapshots 1. Splunk Event entry sample from the MikroTik UDP feed - great if you can help review the "Host", "Source", "Sourcetype" field to see if they are right for the MikroTik2.6 App Splunk Event Entry from UDP and MikroTik.png 2. Splunk UDP input setting Splunk UDP Input...
by JieYu2001
Wed Feb 06, 2019 7:16 am
Forum: Useful user articles
Topic: Using Splunk to analyse MikroTik logs 2.7 (Graphing everything) Topic is solved
Replies: 232
Views: 73494

Re: Using Splunk to analyse MikroTik logs 2.6 (Graphing everything) Topic is solved

Thanks Jotne. Now I see the data (events) through the Splunk search, though MikroTik2.6 app still not sees the data yet and I am still debugging. BTW the Splunk observed event entry looks like - do you see any anomaly there? 2/5/19 9:09:54.000 PM Feb 5 21:09:54 router.lan Feb 5 21:09:54 MikroTik Mik...
by JieYu2001
Mon Feb 04, 2019 9:40 am
Forum: Useful user articles
Topic: Using Splunk to analyse MikroTik logs 2.7 (Graphing everything) Topic is solved
Replies: 232
Views: 73494

Re: Using Splunk to analyse MikroTik logs 2.6 (Graphing everything) Topic is solved

Thanks zandhaas - I got it downloaded. I also installed everything per our topic owner Jotne's procedure but cannot get the data flow from MikroTik to Splunk, after verifying port 514 is open. Upon diving into some details, I suspect it's due to the lack of SSL of my MikronTik (192.168.88.1 shows "N...
by JieYu2001
Fri Feb 01, 2019 8:41 am
Forum: Useful user articles
Topic: Using Splunk to analyse MikroTik logs 2.7 (Graphing everything) Topic is solved
Replies: 232
Views: 73494

Re: Using Splunk to analyse MikroTik logs 2.6 (Graphing everything) Topic is solved

Where can I find the link to download MikroTik2.6 spl? Thanks.