Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
Splunk Add-on for Cisco IPS app icon

Splunk Add-on for Cisco IPS

The Splunk Add-on for Cisco IPS allows a Splunk® Enterprise administrator to consume, analyze, and report on Cisco IPS data that conforms to the Security Device Event Exchange (SDEE) standard. The add-on includes a scripted input to bring your IPS data into Splunk Enterprise as well as knowledge objects (source type definition, field extractions, event types, and tags) to help you view and interpret that data with the Splunk CIM. This add-on is designed to work with the Splunk Cisco Security Suite. Install these together to access reports and dashboards that give you visual insight into your Cisco IPS data.

Built by Splunk Inc.
splunk product badge
Latest Version 2.1.4
May 28, 2015
Compatibility
Not Available
Platform Version: 6.3, 6.2
CIM Version: 4.x
Rating

0

(0)

Log in to rate this app
Support
Splunk Add-on for Cisco IPS support icon
Splunk Supported addon
Learn more
Ranking

#48

in Security, Fraud & Compliance
The Splunk Add-on for Cisco IPS allows a Splunk® Enterprise administrator to consume, analyze, and report on Cisco IPS data that conforms to the Security Device Event Exchange (SDEE) standard. The add-on includes a scripted input to bring your IPS data into Splunk Enterprise as well as knowledge objects (source type definition, field extractions, event types, and tags) to help you view and interpret that data with the Splunk CIM. This add-on is designed to work with the Splunk Cisco Security Suite. Install these together to access reports and dashboards that give you visual insight into your Cisco IPS data.

Categories

Created By

Splunk Inc.

Type

addon

Downloads

1,868

Licensing

Splunk Answers

Resources

Login to report this app listing