Hello, I am trying to figure out hwo we can use Splunk to monitor and report on our network,
specifically I need to catch network errors for things like,
1. dropped packets or connections
2. any kind of network error
3. blockage by firewall or switch ACL
4. any other form of connection data
I tried Splunk Stream, which gives us a lot of data of general chatter and bandwidth info, but its not very useful for detecting network errors or troubleshooting problems
Is there an app or examples on how to set something like this up? Thanks.
↧