COMPSUPP
asked on
DNS lookup in Splunk
Hi
We are currently testing out Splunk to monitor our Cisco ASA 5510 firewall, but running into a problem. Because we are using a DHCP server on all client PCs, just having IP address in the event data is no good. I need the source IP address in the event data for each entry to be converted to the clients name and sorted with the database.
Is this possible and how?
We are currently testing out Splunk to monitor our Cisco ASA 5510 firewall, but running into a problem. Because we are using a DHCP server on all client PCs, just having IP address in the event data is no good. I need the source IP address in the event data for each entry to be converted to the clients name and sorted with the database.
Is this possible and how?
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.