UTM-TA-Mita app icon

UTM-TA-Mita

Normalizes MitaUTM firewall logs and provides CIM-compliant field extractions for network traffic, VPN authentication, DNS resolution, and web proxy events.

Built by Mohammad Amin Abdollahzadeh
splunk product badge
Latest Version 1.0.0
June 6, 2026
Compatibility
Splunk Enterprise, Splunk Cloud
Platform Version: 10.4, 10.3, 10.2, 10.1, 10.0, 9.4, 9.3, 9.2, 9.1, 9.0
CIM Version: 8.x, 6.x, 5.x
Rating

0

(0)

Log in to rate this app
Support
UTM-TA-Mita support icon
Developer Supported addon
The UTM-TA-Mita add-on normalizes and extracts fields from MitaUTM firewall logs, enabling security and network operations teams to analyze firewall activity within Splunk. This add-on processes logs across multiple MitaUTM components including packet filtering, DHCP services, OpenVPN connections, Nginx web proxy traffic, and Unbound DNS resolution. It maps extracted fields to the Common Information Model (CIM) for Authentication, Network Traffic, and Network Resolution data models, allowing the normalized data to work seamlessly with Splunk Enterprise Security and other CIM-dependent applications. By standardizing MitaUTM log formats into CIM-compliant fields and applying appropriate event tags, this add-on enables correlation of firewall events with other security data sources and supports use cases such as threat detection, VPN monitoring, web activity analysis, and DNS query tracking.

Categories

Firewall, Network Security

Created By

Mohammad Amin Abdollahzadeh

Type

addon

Downloads

5

Licensing

Splunk End User License for Third Party Content(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing