All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Timestamps problem with ASA

aniroteg
New Member
‎12-07-2011 11:36 AM

Hi,
I'm not able to get a correct timestamps on my netflow v9 exported from my Cisco ASA.
Does anyone have a fixup ?

Thanks.

0 Karma
Reply

NetFlow_Logic
Contributor
‎04-18-2012 09:06 AM

Cisco ASA support is coming in future versions of the NetFlow Integrator. It is a streaming technology that converts NetFlow to syslog, thus making it available in Splunk in real time. Sign up for Beta now. Demo App is here:

http://splunk-base.splunk.com/apps/NetFlow-based+Network+Monitoring+(Beta)

Reply

tmontague
New Member
‎04-18-2012 08:08 AM

I was having the same issue. After some searching I found that the nfdump doesn't fully support Cisco ASAs in the current stable branches. The only branch that supports ASAs is the NSEL branch. See the sourceforge page here: http://sourceforge.net/projects/nfdump/. "For CISCO ASA devices, which export Netflow Security Event Loging (NSEL) records, please use nfdump-1.5.8-2-NSEL."

0 Karma
Reply

NetFlow_Logic
Contributor
‎05-06-2012 11:17 PM

Cisco ASA support by the NetFlow Integrator is coming in two weeks. Please contact us if you are interested.

0 Karma
Reply
Get Updates on the Splunk Community!

Webinar Recap | Revolutionizing IT Operations: The Transformative Power of AI and ML ...

The Transformative Power of AI and ML in Enhancing Observability   In the realm of IT operations, the ...

.conf24 | Registration Open!

Hello, hello! I come bearing good news: Registration for .conf24 is now open!   conf is Splunk’s rad annual ...

ICYMI - Check out the latest releases of Splunk Edge Processor

Splunk is pleased to announce the latest enhancements to Splunk Edge Processor.  HEC Receiver authorization ...