NetFlow Logic Documentation
NetFlow Logic Documentation
Home
Downloads
Free Trial
NetFlow Logic Documetation
NetFlow Optimizerâ„¢ (NFO) Overview
Core Products
NFO Installation Guide
NFO Administration Guide
NFO User Guide
EDFN Installation Guide
EDFN Administration Guide
Release Notes
Integrations and Apps
NetFlow Analytics for Splunk
Integration with Splunk Enterprise Security
Integration with Elasticsearch
Network Metrics Content Pack for VMware vRealize Log Insight
Solutions
Cloud Application Visibility & Security
NetFlow-based DDoS Detection
V2P Network Visibility
FAQ
Frequently Asked Questions
SUPPORT
Troubleshooting Guide
Support Overview
Powered by GitBook

Integration with Splunk Enterprise Security

To integrate NetFlow Optimizer with Splunk Enterprise Security all you need is to install Technology Add-on for NetFlow (https://splunkbase.splunk.com/app/1838/).

When you use NFO to preprocess and enrich flow data, you sources and destinations will have not only IP addresses, but also contextual information, such as DNS names, VM names, etc.

You can also use this enriched data in Splunk ES Traffic search and other dashboards.

​

Previous
How to Generate Sample Events for Testing Purposes
Next - Integrations and Apps
Integration with Elasticsearch
Last updated 4 weeks ago