Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
Gigamon - CIM app icon

Gigamon - CIM

The Gigamon CIM Add-On is a specialized extension for Splunk designed to streamline the integration and normalization of Gigamon data (Data ingested in JSON format) within the Common Information Model (CIM). This add-on facilitates the mapping of Gigamon-specific fields to the corresponding CIM data model, enhancing the overall visibility and comprehension of Gigamon-generated data within the Splunk platform. As part this we have also created a new Datamodel named "Gigamon: this has 4 new datasets 1) DNS 2) Certificates 3) web 4) Network Traffic. There are 19 attributes corresponding to this. sourcetype=gigamon:traffic Name Tag(s) dns_host_addr gigamon_dns dns_tunneling gigamon_dns http_code gigamon_web http_content_encoding gigamon_web http_file_type gigamon_web http_rtt gigamon_web http_server gigamon_web http_server_agent gigamon_web http_uri gigamon_web http_user_agent gigamon_web http_version gigamon_web ip_wrong_crc gigamon_communicate gigamon_network ssl_cipher_suite_id gigamon_certificate gigamon_ssl ssl_ext_sig_algorithm_scheme gigamon_certificate gigamon_ssl tcp_flag_reset gigamon_communicate gigamon_network tcp_loss_count gigamon_communicate gigamon_network tcp_rtt gigamon_communicate gigamon_network tcp_rtt_app gigamon_communicate gigamon_network tcp_wrong_crc gigamon_communicate gigamon_network

Built by Gigamon Inc.
splunk product badge
Latest Version 1.4.0
September 2, 2024
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1
CIM Version: 5.x
Rating

0

(0)

Log in to rate this app
The Gigamon CIM Add-On is a specialized extension for Splunk designed to streamline the integration and normalization of Gigamon data (Data ingested in JSON format) within the Common Information Model (CIM). This add-on facilitates the mapping of Gigamon-specific fields to the corresponding CIM data model, enhancing the overall visibility and comprehension of Gigamon-generated data within the Splunk platform. As part this we have also created a new Datamodel named "Gigamon: this has 4 new datasets 1) DNS 2) Certificates 3) web 4) Network Traffic. There are 19 attributes corresponding to this. sourcetype=gigamon:traffic Name Tag(s) dns_host_addr gigamon_dns dns_tunneling gigamon_dns http_code gigamon_web http_content_encoding gigamon_web http_file_type gigamon_web http_rtt gigamon_web http_server gigamon_web http_server_agent gigamon_web http_uri gigamon_web http_user_agent gigamon_web http_version gigamon_web ip_wrong_crc gigamon_communicate gigamon_network ssl_cipher_suite_id gigamon_certificate gigamon_ssl ssl_ext_sig_algorithm_scheme gigamon_certificate gigamon_ssl tcp_flag_reset gigamon_communicate gigamon_network tcp_loss_count gigamon_communicate gigamon_network tcp_rtt gigamon_communicate gigamon_network tcp_rtt_app gigamon_communicate gigamon_network tcp_wrong_crc gigamon_communicate gigamon_network

Categories

Created By

Gigamon Inc.

Type

addon

Downloads

192

Licensing

Splunk Answers

Resources

Login to report this app listing