icon/x Created with Sketch.

Splunk Cookie Policy

We use our own and third-party cookies to provide you with a great online experience. We also use these cookies to improve our products and services, support our marketing campaigns, and advertise to you on our website and other websites. Some cookies may continue to collect information after you have left our website. Learn more (including how to update your settings) here.
Accept Cookie Policy

We are working on something new...

A Fresh New Splunkbase
We are designing a New Splunkbase to improve search and discoverability of apps. Check out our new and improved features like Categories and Collections. New Splunkbase is currently in preview mode, as it is under active development. We welcome you to navigate New Splunkbase and give us feedback.

Accept License Agreements

This app is provided by a third party and your right to use the app is in accordance with the license provided by that third-party licensor. Splunk is not responsible for any third-party apps and does not provide any warranty or support. If you have any questions, complaints or claims with respect to this app, please contact the licensor directly.

Thank You

Downloading Cisco ACI App for Splunk Enterprise
SHA256 checksum (cisco-aci-app-for-splunk-enterprise_500.tgz) e62321861f082aac3f7ed5f3e8ae6462f53271d3d5aeb2176335c21c93b3bbdd SHA256 checksum (cisco-aci-app-for-splunk-enterprise_440.tgz) 89303e46cf86fb8f6356fbb8395eef492920254c0c63a54eca07bccbaef562ee SHA256 checksum (cisco-aci-app-for-splunk-enterprise_430.tgz) 1653ca368cd5858b11a6c0833e372aca02680033f86268301c34fdfa40ea5b19 SHA256 checksum (cisco-aci-app-for-splunk-enterprise_424.tgz) a8fd6ab11f4ea2977dd2879ffbed85393f771a984269f28bbdcd4ad6e2fe7994 SHA256 checksum (cisco-aci-app-for-splunk-enterprise_423.tgz) cb7ee0561ad96b2ccc88778fd4e743dc206f5b076cc9639c4683d942e8cbe765 SHA256 checksum (cisco-aci-app-for-splunk-enterprise_422.tgz) 57c6e2165f51defc2e1a9a75e961640575a0b552b38ae8724bdcc2ebc76b373a SHA256 checksum (cisco-aci-app-for-splunk-enterprise_421.tgz) 871fbdbeb682c3184769246613ac38d2fe368428859587cf9584199a544c9f98 SHA256 checksum (cisco-aci-app-for-splunk-enterprise_420.tgz) ef6efb57ca56ba09382fe8e06feb3445ab0d364d7c97c431d1920e46747e88a4 SHA256 checksum (cisco-aci-app-for-splunk-enterprise_413.tgz) 4a2099f40285bbfb9fee3112254db31d6bae3b289a0c1538ed4b32b581bfc074 SHA256 checksum (cisco-aci-app-for-splunk-enterprise_401.tgz) 319101ff5b2393d7a6b97d96a5c24e0ee13750744faf70556507702b06d45710 SHA256 checksum (cisco-aci-app-for-splunk-enterprise_40.tgz) 928394457ef867022216aed5dd40d09a0647a2e603bedfca4a4e3578463a4125 SHA256 checksum (cisco-aci-app-for-splunk-enterprise_30.tgz) c0155091ce7499329bde035d90c5b4e58092852e0dff1bca16ce4e697bd8209e SHA256 checksum (cisco-aci-app-for-splunk-enterprise_222.tgz) eecedfb9637fc479087b377312e63104e0ed6faf2554433e873661697cc94d59 SHA256 checksum (cisco-aci-app-for-splunk-enterprise_221.tgz) 01f9d18b74dcc00ee9498388dd79910c63269a7c814addcee2e79d6cac4c1b6c SHA256 checksum (cisco-aci-app-for-splunk-enterprise_22.tgz) ef3e9cbf2baeb6be7fda3b262cc2534d42aa82c209c705de375d5aab40591c80 SHA256 checksum (cisco-aci-app-for-splunk-enterprise_21.tgz) 67efae4fb43883f14a60ecf5bd20d78b7a78d3c51acaf48b807d861ba949238e SHA256 checksum (cisco-aci-app-for-splunk-enterprise_20.tgz) de21cc15a246af48057739887f9a3a8047992c981ca9383f83e4e008699710a9 SHA256 checksum (cisco-aci-app-for-splunk-enterprise_11.tgz) ad6ccb24031c6bfe938d04c8259eaf9dc1373766b33f7c6cc68d7de8b06e92f6 SHA256 checksum (cisco-aci-app-for-splunk-enterprise_10.tgz) 8ad49586e3d01e7195de9458bf8942e7336fcb6f68b351ccc5aa2b59bf57a86c
To install your download
For instructions specific to your download, click the Details tab after closing this window.

Flag As Inappropriate

splunk

Cisco ACI App for Splunk Enterprise

Overview
Details
A flexible approach to monitoring your Cisco ACI and all other elements of your technology stack. This App for Cisco ACI uses Cisco’s open API framework to collect APIC events, health scores and inventory data to deliver centralized, real-time visibility for applications and ACI infrastructures across bare metal and virtualized environments

Cisco ACI App for Splunk gathers data from APIC enabling you to:

• Gain real time visibility centrally across your ACI deployment
• Track inventory of logical ( e.g tenants, app profiles, EPGs) and physical constructs ( e.g spines, leafs, VMs) along with their health/fault monitoring to analyze, prevent and fix problems
• Threshold setting for KPI's and generate alerts when exceeding warning/critical limits
• Faults tracking with state transition
• Correlate compute, network and storage components by providing integration with Splunk app for vmware

For App related questions, contact
https://globalcontacts.cloudapps.cisco.com/contacts/contactDetails/en_US/c1o1-c2o2-c3o8

ABOUT THIS APP

The Cisco ACI App for Splunk Enterprise is used to build dashboards on indexed data provided by the "Cisco ACI Add-on for Splunk Enterprise" app.

This app delivers centralized, real-time visibility for applications and ACI infrastructures across the bare metal and virtualized environments.

REQUIREMENTS

  • Splunk version supported 7.2, 7.3 and 8.0
  • This main App requires "Cisco ACI Add-on for Splunk Enterprise" version 5.0.0

Recommended System configuration

  • Splunk search head system should have 16 GB of RAM and an octa-core CPU to run this app smoothly.

Topology and Setting up Splunk Environment

Install the main app (Cisco ACI App for Splunk Enterprise) and Add-on app (Cisco ACI Add-on for Splunk Enterprise) on a single machine. * Here both the app resides on a single machine. * The main app uses the data collected by Add-on app and builds dashboard on it

Installation of App

  • This app can be installed through UI using "Manage Apps" or extract zip file directly into /opt/splunk/etc/apps/ folder.
  • Restart Splunk.
  • Login to Splunk: http://<your_splunk_host:port>
  • Open browser: http://<your_splunk_host:port>/en-US/debug/refresh. Click "Refresh"
  • Open browser: http://<your_splunk_host:port>/en-US/_bump
    (To pull all updated web resources from the server to the browser, to modify the cached items such as js, cookies, images etc..)
  • Restart Splunk

  • Note:
    1) If the previous version of App is already installed, remove the cisco-app-ACI folder from Splunk app folder before the installation of a newer version or the user can upgrade the app from Splunk UI.
    2) If in case cleaned Splunk eventdata, please make sure to delete the files ending with _LastTransactionTime.txt from TA_cisco-ACI/bin/ folder.
    These files are saving timestamp to get only incremental data from APIC or MSO.

Installation of Add-on

  • This Add-on app can be installed through UI using "Manage Apps" or extract zip file directly into /opt/splunk/etc/apps/ folder.
  • Ref documentation provided by "Cisco ACI Add-on for Splunk Enterprise" for Configuration of Add-on

  • Note: If the previous version of the Add-on app is already installed, remove the TA_cisco-ACI folder from Splunk app folder before installation of a newer version or the user can upgrade the app from Splunk UI.
    If the user upgrades the app, it should be ensured that index, sourcetype, and interval must be mentioned for each input in local/inputs.conf

Upgradation of App/Add-on

Please disable all the scripted inputs before upgrading Add-on(TA_cisco-ACI). * Download the App package * From the UI navigate to Apps->Manage Apps * In the top right corner select "Install app from file" * Select "Choose File" and select the App package * Check Upgrade App * Select "Upload" and follow the prompts.
#### OR * If a newer version is available on splunkbase, then App/Add-on can be updated from UI also.
* From the UI navigate to Apps->Manage Apps OR click on the gear icon
* Search for Cisco ACI App/Add-on
* Click on 'Update to <version>' under Version Column.

Post upgradation steps

Upgrading the Add-on(TA_cisco-ACI) to v5.0.0 from any version

Please follow the below steps.

  • In inputs.conf file under TA_cisco-ACI/local folder, if stanza containing '-stats' is present, then perform the following steps.
  • Change following Classes:
    • eqptEgrTotal5min to eqptEgrTotal15min
    • eqptIngrTotal5min to eqptIngrTotal15min
    • procCPU5min to procCPU15min
    • procMem5min to procMem15min
  • Restart Splunk
    ##### OR
  • Remove that whole stanza and save the file.
  • Restart Splunk

  • Follow below steps if you are collecting data using Certificate Based Authentication in v4.3.0 OR v4.4.0 and Upgrading Add-on to v5.0.0

  • Take Backup of your Private key.
  • You need to convert your Private key to RSA Private key by running following command in cmd.

    • openssl rsa -in <old_private_key>.key -out <private_key>.key
      (Keep the name same for newly generated private_key).
  • Enable all the scripted inputs.

  • Note: If scripts are already enabled then first disable and then re-enable all the scripted inputs.

Uninstallation of App

This section provides the steps to uninstall App from a standalone Splunk platform installation.

  • (Optional) If you want to remove data from Splunk database, you can use the below Splunk CLI clean command to remove indexed data from an app before deleting the app.

    • $SPLUNK_HOME/bin/splunk clean eventdata -index <index_name>
  • Delete the app and its directory. The app and its directory are typically located in the folder$SPLUNK_HOME/etc/apps/<appname> or run the following command in the CLI:

    • $SPLUNK_HOME/bin/splunk remove app [appname] -auth <splunk username>:<splunk password>
  • You may need to remove user-specific directories created for your app by deleting any files found here: $SPLUNK_HOME/bin/etc/users/*/<appname>

  • Restart the Splunk platform. You can navigate to Settings -> Server controls and click the restart button in Splunk web UI or use the following Splunk CLI command to restart Splunk:

    • $SPLUNK_HOME/bin/splunk restart

TEST YOUR INSTALL

  • Once the Add-on app is configured to receive data from ACI, The main app dashboard can take some time before the data is populated in all panels. A good test to see that you are receiving all of the data is to run this search after several minutes:

    index="<your index>" | stats count by sourcetype

  • Troubleshooting APIC configuration:

  • In particular, you should see these sourcetypes:
    • cisco:apic:health
    • cisco:apic:stats
    • cisco:apic:class
    • cisco:apic:authentication
    • cisco:apic:cloud
  • If you don't see these sourcetypes, have a look at the messages output by the scripted input: collect.py. Here is a sample search that will show them:
    index=_internal component="ExecProcessor" collect.py "ACI Error:" | table _time host log_level message

  • Troubleshooting MSO configuration:

  • You should see this sourcetype: cisco:mso
  • If you don't see this sourcetype, have a look at the messages output by the scripted input: collect_mso.py. Here is a sample search that will show them:
    index=_internal component="ExecProcessor" collect_mso.py "MSO Error:" | table _time host log_level message

You can also see $SPLUNK_HOME/var/log/splunk/splunkd.log file to check if any error has occurred.

Data Model

This app stores the indexed data in accelerated datamodels and build dashboards by fetching data from datamodels. Below is the list of datamodels that have been created in the app.

  • Auth - Maps authentication details from the ACI Environment.
  • Health - Maps health and fault information for all the MOs of given classes.
  • Fault - Maps to defects or faults present on APIC.
  • Systems - Maps to general information for all the MOs of given classes.
  • Counters - Maps to general information for all the MOs of given classes.
  • Statistics - Maps to statistical data for all the MOs of given classes.
  • Events - Maps to general information for all the MOs of class=eventrecord.

  • If you want to improve the performance of dashboards, you must need to enable the acceleration of datamodel. Please follow the below steps:

  • Go to Settings -> Data Models
  • Filter with Cisco ACI App For Splunk Enterprise
  • In Action tab, Click on Edit and click Edit Acceleration
  • Check Acceleration checkbox and select the appropriate summary range and Save it
  • Warning: Acceleration may increase storage and processing costs.

Saved Searches

This app provides savedsearches that generate lookup files or send email alerts.

  • savedsearches which generates lookup files
  • APICFabricLookup - generates APICNodeLookup.csv file
  • APICCEPLookup - generates APICVMLookup.csv file
  • MSO Sites Lookups - generates mso_site_details.csv file
  • savedsearches which generates alerts
  • ACI Monitoring Threshold: Tenant Exceeds Warning Threshold Limit
  • ACI Monitoring Threshold: Tenant Exceeds Critical Threshold Limit
  • ACI Monitoring Threshold: Tenant Exceeds Max Threshold Limit
  • ACI Monitoring Threshold: EPG Exceeds Warning Threshold Limit
  • ACI Monitoring Threshold: EPG Exceeds Critical Threshold Limit
  • ACI Monitoring Threshold: EPG Exceeds Max Threshold Limit
  • ACI Monitoring Threshold: Contracts Exceeds Warning Threshold Limit
  • ACI Monitoring Threshold: Contracts Exceeds Critical Threshold Limit
  • ACI Monitoring Threshold: Contracts Exceeds Max Threshold Limit
  • ACI Monitoring Threshold: Filters Exceeds Warning Threshold Limit
  • ACI Monitoring Threshold: Filters Exceeds Critical Threshold Limit
  • ACI Monitoring Threshold: Filters Exceeds Max Threshold Limit
  • ACI Monitoring Threshold: BD Exceeds Warning Threshold Limit
  • ACI Monitoring Threshold: BD Exceeds Critical Threshold Limit
  • ACI Monitoring Threshold: BD Exceeds Max Threshold Limit
  • ACI Monitoring Threshold: L3Out Networks Exceeds Warning Threshold Limit
  • ACI Monitoring Threshold: L3Out Networks Exceeds Critical Threshold Limit
  • ACI Monitoring Threshold: L3Out Networks Exceeds Max Threshold Limit
  • ACI Monitoring Threshold: TCAM Percentage Utilized Exceeds Warning Threshold Limit
  • ACI Monitoring Threshold: TCAM Percentage Utilized Exceeds Critical Threshold Limit
  • ACI Monitoring Threshold: Egress Port Utilization for Leafs/Spines Exceeds Warning Threshold Limit
  • ACI Monitoring Threshold: Egress Port Utilization for Leafs/Spines Exceeds Critical Threshold Limit
  • ACI Monitoring Threshold: Ingress Port Utilization for Leafs/Spines Exceeds Warning Threshold Limit
  • ACI Monitoring Threshold: Ingress Port Utilization for Leafs/Spines Exceeds Critical Threshold Limit
  • ACI Monitoring Threshold: VLAN Pool Exceeds Max Thresh
    old Limit
  • ACI Monitoring Threshold: VLAN Pool Exceeds Critical Threshold Limit

Additional Features

In addition to out-of-the-box reporting and analytics capabilities for your ACI environment, the app includes a set of pre-defined dashboards for specific user roles:

  • Helpdesk admin: Enables Help desk operator to analyze various faults in the system and escalate them to tenant or fabric admin accordingly. He will have access to only "Home", "Authentication" and "Helpdesk" dashboards.

  • Tenant admin: Enables Tenant admin to analyze and drill down faults and health related issues to a particular tenant. He can drill down into Applications, EPGs, and VM endpoints to identify a single point of failure within the admin. He will have access to only "Home", "Authentication" and "Tenants" Dashboards.

  • Fabric admin: Enables Fabric Admin to analyze physical network related issues. It gives visibility into fabric components of networks e.g. leaf, spine and it's physical components like chassis, ports, fan tray, line card, etc.

  • Tenant user: Enables Tenant User to manage a specific tenant and all of its components like Application, EPGs ,and VMs. To create a Tenant user for tenant "ABC", follow the steps given below.

1) Create a role with name "tenant_ABC". In search criteria put "dn=uni/tn-ABC/*".
2) Create a new user with the name user-ABC and apply the role of "tenant_ABC" to this user.
3) Edit the permission of Tenant Dashboard to provide read access to a user with the role "tenant_ABC".

The app also includes a set of MSO dashboards for specific use cases:

New Dashboards

  • Sites: Information about sites associated with MSO and the fault count of various severity levels. Drill-downs are provided in Site Information, Site Health graph, and panels consisting of fault counts, so users can get a detailed view of the same.

  • Schemas: Information about schemas configured with MSO. Drill down into No. of Schemas Associated With MSO single pane visualization will show schema details, drill-down on Application Profiles, Bridge Domain, External EPGs, and VRF single pane visualization to get insights about particular health and fault details and drill-down on contracts will show contracts health details.

  • Tenants: Graphical representation of tenants associated with sites, schemas, and users. Drill down on table showing Tenant Details for a particular site will re-direct to Tenant Details dashboard giving more description about the selected tenant.

  • Users: Information about MSO users and their roles. More details about user and roles are given by drill down on Users and Roles panel.

  • Policy: Information about policies configured in MSO. Drill down on Policy SubType Breakdown panel will show details of specific subtype.

All the MSO dashboards have Audit Logs panel showing Audit Logs of a particular type, for example, schemas dashboard have audit logs only of type schema.

Troubleshooting

  • If any warning displayed in dashboards of the app stating excessive memory usage of mvexpand command like: output will be truncated at xxx results due to excessive memory usage... , user can manually increase the memory limit in limits.conf
  • Default value of max_mem_usage_mb parameter is 500 MB. to increase the limit follow below steps.
  • create limits.conf file under $SPLUNK_HOME/etc/apps/cisco-app-ACI/local
  • Add below stanza:
    [mvexpand]
    max_mem_usage_mb = <non-negative integer in MB>

The list of open source components used in developing the App

Support

  • This app is supported by Cisco Systems.
  • Email support during weekday business hours. Please ask a question or send an email to aci-splunk-app@cisco.com
  • Author : Cisco Systems
  • Copyright (c) 2013-2020 Cisco Systems, Inc

Release Notes

  • Version 5.0.0:
  • Added MSO Overview, Sites, Schemas, Tenants, Users, and Policy Dashboards for Multi-Site Orchestrator.
  • Updated setup guide

  • Version 4.4.0:

  • Updated setup guide
  • Added support of Splunk 8.x

  • Version 4.3.0:

  • Added 3 Dashboards of Cloud APIC
  • Changed savedsearches - APICFabricLookup, APICCEPLookup
  • Bug Fixeseafs and spines. Also provides tenant-based utilization report for bandwidth consumed

• Correlate compute, network and storage components by providing integration with Splunk app for vmware

• This app includes a set of pre-defined dashboards for specific user roles – Helpdesk admin, Tenant admin, Fabric Admin, VMM admin


KEY FEATURES


• Support for multiple APIC's (App Version 4.0 onwards)

• Overall fabric health score monitoring

• Multi-Pod and Micro-segemntation support

• Top affected tenants, their health score and faults with the drilldown capability to look into fault descriptions and recommended actions.

• Top affected spines and leafs, their health score and faults with the drilldown capability to look into their physical components e.g. chassis, fan tray, power supply, supervisor etc.

• Trending of faults over time, by cause and by impacted assets

• Threshold setting for KPI's (e.g tenants, end point groups, contracts, filters, bridge domains and l3out networks) and generate alerts when threshold exceeds warning/critical limits

• Provides Top TCAM percentage used nodes and Port utilization of leafs and spines. Also provides tenant-based utilization report for bandwidth consumed

• Authentication tracking

• Ability to correlate ACI compute and storage data with data collected by Splunk app for VMware


REQUIREMENTS


• Splunk version supported 7.0, 7.1, 7.2, 7.3 and 8.0

• Splunk search head system should have 16 GB of RAM and a octa-core CPU to run this app smoothly

• This main app Cisco ACI App for Splunk Enterprise also requires Cisco ACI Add-on for Splunk Enterprise.

  For Cisco ACI App for Splunk Enterprise (Version 4.4.0) download Cisco ACI Add-on for Splunk Enterprise (Version 4.5.0)
  For Cisco ACI App for Splunk Enterprise (Version 2.2.2) download Cisco ACI Add-on for Splunk Enterprise (Version 2.2) 
  For Cisco ACI App for Splunk Enterprise (Version 3.0) download Cisco ACI Add-on for Splunk Enterprise (Version 3.0)
  For Cisco ACI App for Splunk Enterprise (Version 4.0) download Cisco ACI Add-on for Splunk Enterprise (Version 4.0)

TOPOLOGY AND ENVIRONMENT SETTING


Install main app (Cisco ACI App for Splunk Enterprise) and Add-on app (Cisco ACI Add-on for Splunk Enterprise) on a single machine.
• Here both the app resides on a single machine.
• Main app uses the data collected by Add-on app and builds dashboard on it


HOW TO INSTALL


• This app should be installed on search head either through UI through "Manage Apps" or by extracting zip file into /opt/splunk/etc/apps folder.
• Restart Splunk.
• Note: If the previous version of App is already installed, remove the cisco-app-ACI folder from Splunk app folder before installation of newer version.


HOW TO CONFIGURE


• Login to Splunk: http://your_splunk_host:port
• In browser type: http://your_splunk_host:port/en-US/_bump . Click "Bump Version".
• In browser type: http://your_splunk_host:port/en-US/debug/refresh. Click "Refresh".
• Restart Splunk

Create index for Cisco ACI App for Splunk Enterprise (Only App Version 4.x)

• To Create an index 'apic' with Splunk Web.
     In Splunk Web, navigate to Settings -> Indexes and click New Index.
     Index Name: apic 
     App: Cisco ACI App for Splunk Enterprise 
     Keep default for other inputs. Click Save. 
• Restart Splunk

• Users also needs to install and configure Add-on app (Cisco ACI Add-on for Splunk Enterprise). The installation and configuration steps are provided in add-on app documentation.


FOR MORE INFO


• Login to Splunk: http://your_splunk_host:port
• Complete instruction is also available as “Setup Guide” tab in Cisco ACI App for Splunk Enterprise.


SUPPORT


• This app is supported by Cisco Systems.
• Email support during weekday business hours.
• Please ask questions by creating a TAC case on https://globalcontacts.cloudapps.cisco.com/contacts/contactDetails/en_US/c1o1-c2o2-c3o8
OR contact us at 1 800 553 2447 or 1 408 526 7209


RESOURCE


Solution brief

• Overview: Cisco ACI App for Splunk Enterprise

Splunk and Cisco APIC drive network analytics

• Cisco Marketplace Website: Cisco ACI for Splunk Enterprise

Release Notes

Version 5.0.0
Oct. 15, 2020

Added New dashboards for Multi-Site Orchestrator
MSO Overview
Sites
Schemas
Tenants
Users
Policy
Added support for filter out data based on the Multi-Site Orchestrator on all ACI dashboards

Version 4.4.0
Jan. 7, 2020
  • Added support of Splunk 8.x
Version 4.3.0
Aug. 8, 2019

Version 4.3.0
Added 3 Dashboards of Cloud APIC
Changed savedsearches - APICFabricLookup, APICCEPLookup
* Bug Fixes

Version 4.2.4
Jan. 26, 2019

v 4.2.4
- Additional Dashboards for Controller Statistics and ACL Logs on L2 and L3 layer
- Better UI performance
- Additional VLAN information
- Bug fixes

Version 4.2.3
Oct. 22, 2018

v 4.2.3
-Additional bug fixes

v 4.2.2
- Additional Cloud Support

v 4.2.1
- Additional Dashboards for Controller Statistics and ACL Logs on L2 and L3 layer
- Better UI performance
- Additional VLAN information
- Bug fixes

For App related questions, kindly create a TAC case
https://globalcontacts.cloudapps.cisco.com/contacts/contactDetails/en_US/c1o1-c2o2-c3o8
OR
Contact Us
1 800 553 2447 or
1 408 526 7209

Version 4.2.2
Sept. 25, 2018

v 4.2.2
- Additional Cloud Support

v 4.2.1
- Additional Dashboards for Controller Statistics and ACL Logs on L2 and L3 layer
- Better UI performance
- Additional VLAN information
- Bug fixes

For App related questions, kindly create a TAC case
https://globalcontacts.cloudapps.cisco.com/contacts/contactDetails/en_US/c1o1-c2o2-c3o8
OR
Contact Us
1 800 553 2447 or
1 408 526 7209

Version 4.2.1
July 13, 2018

v 4.2.1
- Additional Dashboards for Controller Statistics and ACL Logs on L2 and L3 layer
- Better UI performance
- Additional VLAN information
- Bug fixes

Version 4.2.0
July 12, 2018

v 4.2.0
- Additional Dashboards for Controller Statistics and ACL Logs on L2 and L3 layer
- Better UI performance
- Additional VLAN information
- Bug fixes

Version 4.1.3
Sept. 22, 2017

Version 4.1.3 updates (compatible with ACI add-on 4.1.1):

New Fabric Extenders dashboard
APIC Syslog parsing capability - Used in System Faults and Events dashboard
APIC Health and Status monitoring
Minor bugs and fixes
Optimized dashboard/search performance

For Technical Support: contact aci-splunk-app@cisco.com OR create a case with Cisco TAC.

Version 4.0.1
March 31, 2017

All features existing in the version 4.0
New sample data for eventgen (Cisco ACI Add-on for Splunk Enterprise Version 4.0.1)
Minor bug fixes
Updated Help Desk>'System Faults' dashboard
Updated Fabric>'Authentication' dashboard

Version: 4.0 features
The features developed in this release include: • Support for multiple APIC's • Syslog Integration with ACI • Multi-Pod and Micro-segmentation view • Get to the root cause better and faster • Increased performance of dashboards • New and better User Interface and drill-down capabilities

Version 4.0
Jan. 24, 2017

The features developed in this release include: • Support for multiple APIC's • Syslog Integration with ACI • Multi-Pod and Micro-segmentation view • Get to the root cause better and faster • Increased performance of dashboards • New and better User Interface and drill-down capabilities

Version 3.0
Oct. 20, 2016

The features developed in this release include:
• Support for multiple APIC's
• Threshold setting for KPI's (i.e. no of tenants, end point groups, contracts, filters, bridge domains and l3out networks) • Generate Alters when threshold levels exceed. • Fault tracking with state transition. • Tenant Utilization, Top TCAM and Port Utilization.

Version 2.2.2
Oct. 14, 2016

The features developed in this release include: • Threshold setting for KPI's (i.e. no of tenants, end point groups, contracts, filters, bridge domains and l3out networks) • Generate Alters when threshold levels exceed. • Fault tracking with state transition. • Tenant Utilization, Top TCAM and Port Utilization. • Updated the Splunk Landing page/home page to display the Number of EPGs, Number of contracts, Number of filters, Number of BDs and Number of L3OutNetworks. Drill down on each component to display tenant-wise details.

Version 2.2.1
Oct. 7, 2016

The features developed in this release include:
• Threshold setting for KPI's (i.e. no of tenants, end point groups, contracts, filters, bridge domains and l3out networks)
• Generate Alters when threshold levels exceed.
• Fault tracking with state transition.
• Tenant Utilization, Top TCAM and Port Utilization.
• Updated the Splunk Landing page/home page to display the Number of EPGs, Number of contracts, Number of filters, Number of BDs and Number of L3OutNetworks. Drill down on each component to display tenant-wise details.

Version 2.2
Sept. 9, 2016

Release Features
The features developed in this release include:
• Threshold setting for KPI's (i.e. no of tenants, end point groups, contracts, filters, bridge domains and l3out networks)
• Generate Alters when threshold levels exceed.
• Fault tracking with state transition.
• Tenant Utilization.
• TCAM and Port Utilization.
• Updated the Splunk Landing page/home page to display the Number of EPGs, Number of contracts, Number of filters, Number of BDs and Number of L3OutNetworks. Drill down on each component to display tenant-wise details.

Version 2.1
Aug. 3, 2016

Release Features
The features developed in this release include:
• Threshold setting for KPI's (i.e. no of tenants, end point groups, contracts, filters, bridge domains and l3out networks)
• Generate Alters when threshold levels exceed.
• Fault tracking with state transition.
• Tenant Utilization.
• TCAM and Port Utilization.
• Updated the Splunk Landing page/home page to display the Number of EPGs, Number of contracts, Number of filters, Number of BDs and Number of L3OutNetworks. Drill down on each component to display tenant-wise details.

Version 2.0
July 5, 2016

Release Features
The features developed in this release include:
• Threshold setting for KPI's (i.e. no of tenants, end point groups, contracts, filters, bridge domains and l3out networks)
• Generate Alters when threshold levels exceed.
• Fault tracking with state transition.
• Tenant Utilization.
• TCAM and Port Utilization.
• Updated the Splunk Landing page/home page to display the Number of EPGs, Number of contracts, Number of filters, Number of BDs and Number of L3OutNetworks. Drill down on each component to display tenant-wise details.

Version 1.1
April 1, 2015
Version 1.0
Oct. 31, 2014

Subscribe Share

Are you a developer?

As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.

Follow Us:
Splunk, Splunk>,Turn Data Into Doing, Data-to-Everything, and D2E are trademarks or registered trademarks of Splunk Inc. in the United States and other countries. All other brand names,product names,or trademarks belong to their respective owners.