Zyxel Add-on for Splunk
The Zyxel Add-on for Splunk Enterprise fetches data on traffic, security, session, authentication, and other logs from Zyxel firewalls and makes them CIM compatible with the Splunk CIM model. This enables the data to be used in Splunk ES to create security use cases, providing comprehensive insights and enhancing security monitoring and management.
In collaboration to this addon install and configure Zyxel Firewall Application for getting Zyxel data insights and usecases.
- Integration with Zyxel data: The addon provides monitoring stanza with path and via tcp port from your Zyxel firewall get it from either one way using inputs.conf on FW with installed addon.
- Detailed CIM model: The Zyxel addon for Splunk, Zyxel logs cim compatibility , with CIM model such as authentication, network session , network traffic
- Easy Configuration: The addon is designed to be easy to configure, with a detailed guide provided on how to set it up. Users need to configure the app on Forwarder with monitoring stanza using sourcetype shipped with app.
Feel free to email us on support@avotrix.com for query related to our products
Only logged in customers who have purchased this product may leave a review.
Reviews
There are no reviews yet.