Bots From Extension: splunk
Splunk
Deprecated
- This extension has been deprecated
- You may continue to use the extension but replacement extension splunk_v2 is recommended
This extension provides 2 bots.
Bot @splunk:main:search
Bot Position In Pipeline: Source
Tag for Index: main
This bot expects a Restricted CFXQL.
Each parameter may be specified using '=' operator and AND logical operation
Following are the parameters expected for this Bot
| Parameter Name | Type | Default Value | Description |
|---|---|---|---|
| match | Text | * | |
| timestamp* | DateTime |
Bot *splunk:splunkApps
Bot Position In Pipeline: Source
Tag to list all installed splunk apps
This bot expects a Full CFXQL.
Bot applies the Query on the data that is already loaded from previous bot or from a source.