Visualize the Splunk Log Search Result with DVT

Use Case

Using the publicly available Splunk Enterprise REST API, NetworkBrain has created an integration compatible with NetworkBrain release 8.0 (and newer) that enables a NetworkBrain end user to easily search Splunk logs from a topology-based spatial troubleshooting context - a user-created map.

With this integration,

• Users can search historical logs (network syslog and any other logs) from Splunk Enterprise with simple inputs provided from UI.
  • Search Keywords
  • Source
  • Time Range
• NetworkBrain can overlay the log search result on a map with a link to the search result in Splunk Enterprise.

NetworkBrain Map with Splunk Log Search Overlay

Below are example representations of the Splunk search inputs and log data overlay on NetworkBrain map.