All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

WildFire Dashboard Displaying Benign Only

nychawk
Communicator
‎10-07-2015 05:13 AM

Hello;

My dashboard "All WildFire Events by Category" does not show activity other than benign, is there something I need to perform or enable in order to see deny activity?

PS I am using latest versions of the PA app.

Thank you,

-mi

0 Karma
Reply

bravon
Communicator
‎10-07-2015 06:14 AM

The dashboard shows "Last 60 minutes" - hit the "Open in search" button and change to a larger scope - you may not have any Malicious files in the logs for the last hour

0 Karma
Reply

nychawk
Communicator
‎10-07-2015 07:15 AM

Thank you, however I had already done this, and went a day prior; still unable to see other than benign.

0 Karma
Reply

bravon
Communicator
‎10-07-2015 08:39 AM

But are you sure there are any non-benign files?

0 Karma
Reply

nychawk
Communicator
‎10-07-2015 10:28 AM

Yes, my PA recently denied an inbound SMTP connection. I am able to see the returned email, but the action never appears on my Splunk dash.

0 Karma
Reply
Get Updates on the Splunk Community!

Introducing the 2024 SplunkTrust!

Hello, Splunk Community! We are beyond thrilled to announce our newest group of SplunkTrust members!  The ...

Introducing the 2024 Splunk MVPs!

We are excited to announce the 2024 cohort of the Splunk MVP program. Splunk MVPs are passionate members of ...

Splunk Custom Visualizations App End of Life

The Splunk Custom Visualizations apps End of Life for SimpleXML will reach end of support on Dec 21, 2024, ...