Zyxel Add-on for Splunk

The Zyxel Add-on for Splunk Enterprise (TA_Zyxel_Splunk) sets the correct sourcetype, fields used for identifying data from Zyxel firewall using Splunk® Enterprise & Splunk® Cloud for all the categories of logs. This also allows Splunk software administrators to map Zyxel firewall device events to the Splunk CIM. Install this Add-On on your Heavy forwarder indexer and search head. Install the Zyxel firewall Splunk App (Avo_Zyxel_Firewall_Monitor) https://classic.splunkbase.splunk.com/app/4907/ on your search head and get an insight into firewall data via dashboards, data models, reports, alerts, and security use cases.

Built by Avotrix Inc

Latest Version 2.0.2

March 20, 2024

Release notes

Compatibility

Not Available

Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0

Rating

0

(0)

Log in to rate this app

Support

Developer Supported addon

Learn more

The Zyxel Add-on for Splunk Enterprise (TA_Zyxel_Splunk) sets the correct sourcetype, fields used for identifying data from Zyxel firewall using Splunk® Enterprise & Splunk® Cloud for all the categories of logs. This also allows Splunk software administrators to map Zyxel firewall device events to the Splunk CIM. Install this Add-On on your Heavy forwarder indexer and search head. Install the Zyxel firewall Splunk App (Avo_Zyxel_Firewall_Monitor) https://classic.splunkbase.splunk.com/app/4907/ on your search head and get an insight into firewall data via dashboards, data models, reports, alerts, and security use cases.