Technology Add-on for VMware ESXi Syslog (Community) app icon

Technology Add-on for VMware ESXi Syslog (Community)

Technology Add-on for VMware ESXi Syslog (Community) parses VMware ESXi syslog and normalizes key events to Splunk CIM. It extracts rich fields from hostd/vmkernel/vSAN/Envoy/Rhttpproxy and more, adds Authentication and Web (proxy) tagging, and includes a simple overview dashboard. Works with generic syslog (sourcetype=vmw-syslog) across 6.x–8.x ESXi log formats without requiring index-time changes.

Built by
splunk product badge
Latest Version 0.3.0
September 14, 2025
Compatibility
Splunk Enterprise, Splunk Cloud
Platform Version: 10.0, 9.4, 9.3, 9.2, 9.1, 9.0, 8.2
CIM Version: 6.x
Rating

0

(0)

Log in to rate this app
Support
Technology Add-on for VMware ESXi Syslog (Community) support icon
Developer Supported addon
Ranking

#14

in Virtualization
Technology Add-on for VMware ESXi Syslog (Community) parses VMware ESXi syslog and normalizes key events to Splunk CIM. It extracts rich fields from hostd/vmkernel/vSAN/Envoy/Rhttpproxy and more, adds Authentication and Web (proxy) tagging, and includes a simple overview dashboard. Works with generic syslog (sourcetype=vmw-syslog) across 6.x–8.x ESXi log formats without requiring index-time changes.

Categories

Security, Fraud & Compliance, Virtualization

Created By

Shervin ghl

Type

addon

Downloads

170

Licensing

Splunk End User License for Third Party Content(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing