Searches, Reports, and Alerts

Searches

There are four search dashboards within the App:
  • Traffic Timeline - search criteria set to macro `netflow_search_traffic_rules`
  • Cisco ASA Timeline
  • Palo Alto Networks Timeline
  • NSX DFW Timeline
To see all output from NFO enter “index=flowintegrator” in search area. To filter search results to a specific NFO Module, please add the corresponding Module output ID to your search, for example:
“index=flowintegrator nfc_id=20067”
You can add additional filters or any other Splunk search commands to narrow your search results and / or see various statistics. You can also save your custom searches there.

Reports

There several online reports included with the App, and a Top Talkers report that can be scheduled. If you have questions, please contact support: [email protected]

Alerts

The app comes with several alerts for security and IT operation use cases. If you have questions, please contact support: [email protected]
Copy link