I can put a video out on doing it without cribl. Let me shoot for something next week. I am not a cribl employee and receive no compensation from cribl, but I do highly encourage everyone to try cribl (it's free), it changed my life as it comes to getting logs into splunk. Doing it the old way is beyond painful :) but I will put out this same video just using the tools available in Splunk.
too late to the party here but what if splunk license it's a concern, is there any other way of doing this without adding the keys in the log message to save space?
hit me up on discord and we can talk ways to limit / keep your ingestion under control. but it is much easier to discuss in a discord pm than in a comment section like youtube.
Great video! Can you make a tutorial like this without using cribl as well?
I can put a video out on doing it without cribl. Let me shoot for something next week.
I am not a cribl employee and receive no compensation from cribl, but I do highly encourage everyone to try cribl (it's free), it changed my life as it comes to getting logs into splunk. Doing it the old way is beyond painful :) but I will put out this same video just using the tools available in Splunk.
Thanks for the video, how did you create the Pfsense_block pipeline and introduce it into the system?
Not a hundred percent what you are referring to. Feel free to reach out to me on discord and I will walk you through any questions you may have.
too late to the party here but what if splunk license it's a concern, is there any other way of doing this without adding the keys in the log message to save space?
hit me up on discord and we can talk ways to limit / keep your ingestion under control. but it is much easier to discuss in a discord pm than in a comment section like youtube.
You are dutch ? :) hahaha
Not dutch. Why do you ask?
@@lamecreations_guides I saw a dutch company in one of your samples :) ziggozakelijk which means ziggo for business