Dell ECS App for Splunk allows you to leverage the ECS platform data within your Splunk Enterprise instance.
Version 1.2.2
Version 1.2.1
Version 1.2.0
Version 1.1.0
This App can be set up in two ways:
1) Standalone Mode: Install the app on a single machine. This single machine would serve as a Search Head + Indexer + Heavy forwarder for this setup
2) Distributed Environment: Install app on search head.
Splunk Enterprise:
Dell ECS Add-on for Splunk with input configuration
Tested on CentOS, Windows with the latest chrome and firefox browser version.
This App can be installed through UI using the following steps.
install app from file
.Choose File
and select the Dell ECS App installation file.Upload
.After Installation
Dell ECS App for Splunk
and click on Set up
under the Actions.save
. For example, If the base value is 2 then 1024 Bytes will be converted to 1 KiB and if the base value is 10 then 1000 Bytes will be converted to 1 KB.Dell_ECS_index
and click Dell_ECS_index
under the Name.(index=<index>)
and clickSave
.To see data logged by Dell ECS Add-on for Splunk
, select the Search
tab. Search Dell_ECS_index
macro.
dell_vdc_list
saved search.dell_vdc_list
saved search is used to populate dell_vdc_list_lookup lookup.Please reference the guide located to below link for additional configuration details.
Link: https://infohub.delltechnologies.com/t/dell-ecs-app-for-splunk-enterprise/
Minor bug fix
BugFix for Transaction > Transaction Requests Dashboard
Added CAS dashboard which will help to analyze the CAS logs
Fixed minor dashboard bugs.
Splunk 8 Support
As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.