Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Meraki App Update #2088

Closed
satellite-no opened this issue Jun 29, 2023 · 2 comments
Closed

Meraki App Update #2088

satellite-no opened this issue Jun 29, 2023 · 2 comments
Assignees
@mstopa-splunk

Comments

@satellite-no
Copy link
Contributor

satellite-no commented Jun 29, 2023
edited
Loading

Please update SC4S to use the Splunk supported meraki addon vs the developer supported addon. Specially calling out this page https://splunk.github.io/splunk-connect-for-syslog/main/sources/vendor/Cisco/cisco_meraki/.
@rjha-splunk
Copy link
Collaborator

@mateuszpierzchala-splunk Can you please check this.

@mstopa-splunk mstopa-splunk mentioned this issue Aug 11, 2023
Merged
@mstopa-splunk
Copy link
Contributor

Hi @satellite-no, thank you for reporting this.

Previous SC4S Meraki parser was based on vendor product by source configuration due to its general log format.

This recent release retains previous solution for general Meraki logs, but also introduces syslog-app and almost-syslog-app parsers with sourcetypes corresponding to the official TA whenever hostname and program values enable it.

https://github.com/splunk/splunk-connect-for-syslog/blob/main/docs/sources/vendor/Cisco/cisco_meraki.md

Please let us know in case of further issues.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@mstopa-splunk mstopa-splunk

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@satellite-no @rjha-splunk @mateuszpierzchala-splunk @mstopa-splunk