1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Splunk and Tomato

Discussion in 'Tomato Firmware' started by mikeownage, Jan 31, 2013.

  1. mikeownage

    mikeownage Networkin' Nut Member

    Is it possible to install splunk on tomato, I am currently running Tomato Firmware v1.28.7501 MIPSR2Toastman-RT K26 USB VPN-NOCAT on an asus RT-N16. If it is possible what will I need to do and is any additional hardware required.
     
  2. Toastman

    Toastman Super Moderator Staff Member Member

    Splunk? :D
     
  3. shibby20

    shibby20 Network Guru Member

    No, because they don`t publish a source code.
     
  4. imcamper

    imcamper Networkin' Nut Member

    You can install Splunk on the OS of your choice and then send your Tomato syslogs to it. I've just began experimenting with that. I've got my syslogs in Splunk but am not quite sure what to do with them. I've tried two apps but neither is really good. Homemonitor seems to be geared toward Verizon FiOS routers. And the I have also tried "Splunk for Netfilter and iptables" but the author of that app has all the searches geared for logs with just denied packets. While I'm interested in denies, I'm even more interested in what's been allowed. After all, if it's denied, it didn't make it into my network and is less of a concern. ;)
     
  5. mikeownage

    mikeownage Networkin' Nut Member

    Yes, i've tried both syslog watcher 4 and splunk. Both work but dns resolution works better in syslog watcher 4 however splunk has better filters and reports.
     

Share This Page