Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Mikrotik APP and ES

ashkanarjmand
New Member
‎05-18-2021 11:27 AM

Hi

for getting mikrotik logs in splunk i use mikrotik app.
i have a problem with show mikrotik events in splunk Enterprise Security (ES), nothing show. i have around 10M logs in splunk but all of my notables in ES are empty!
what can i do ?

 

in the first picture: 192.168.110.1 is my mikrotik routerboard: 

in the second picture: as you see i have too many DNS activity: 

and i the third picture:  in ES APP nothing show:

 

i this picture: 192.168.110.1 is my mikrotik routerboard:i this picture: 192.168.110.1 is my mikrotik routerboard:as you see i have too many DNS activity:as you see i have too many DNS activity:but i ES nothing show:but i ES nothing show:

Labels (1)
Labels
Tags (2)
0 Karma
Reply

zandhaas
Explorer
‎11-09-2021 06:30 AM

Look at the corresponding thread on the Mikrotik forum:

https://forum.mikrotik.com/viewtopic.php?t=179960 

0 Karma
Reply

ashkanarjmand
New Member
‎05-19-2021 08:44 PM

no one answer me?

0 Karma
Reply
Get Updates on the Splunk Community!

Built-in Service Level Objectives Management to Bridge the Gap Between Service & ...

Wednesday, May 29, 2024  |  11AM PST / 2PM ESTRegister now and join us to learn more about how you can ...

Get Your Exclusive Splunk Certified Cybersecurity Defense Engineer Certification at ...

We’re excited to announce a new Splunk certification exam being released at .conf24! If you’re headed to Vegas ...

Share Your Ideas & Meet the Lantern team at .Conf! Plus All of This Month’s New ...

Splunk Lantern is Splunk’s customer success center that provides advice from Splunk experts on valuable data ...