Add-on for OPNsense® Firewall - TA-opnsense
Documentation
Full documentation can be found at https://splunk-opnsense-ta.ztsplunker.com.
About
Info | Description |
---|---|
Version | 1.5.1 - See on Splunkbase |
Vendor Product Version | OPNsense® 21.7 |
Add-on has a web UI | Yes, this add-on has a view to setup a modular input. |
NEW: Try the new OPNsense App for Splunk!
The TA-opnsense Add-on allows Splunk data administrators to map the OPNsense® firewall events to the CIM enabling the data to be used with other Splunk Apps, such as Enterprise Security.
Version 1.5.1
- Updating field extractions for Suricata events in Drop mode - #58
- Adding default allowed action for suricata events
- Fixed certificate issue when no cert checking is enabled - issue #61
Bugs
Please open an issue at github.com