Splunk dev license limit is 50 gb but it would support LDAP?
Also, previously this limit is 10 GB. So it changed or this are totally two different license.
... View more
I have subnet lookup in cidr notation. so i am trying to print subnet detail with dest ip but not getting result.
query:-
index=xyz | stats count by dest | lookup subnet.csv subnet as dest output subnet as subnets
I have no any transformation stanza right now so let me know if any other staza require to compute this or any other way.
... View more
So we have lookup which belongs to one of the threat intelligence app. It updates through some script. So I want to check this update modification logs. I have seen through internal index but not getting any useful information.
... View more
Suddenly, I have seen one of the lookup is empty, So how can I found the root cause for this. As per my knowledge, it is generating by running some script but I can't find any information.
... View more
