product
service
- Simple Security Consulting [Consulting]
- Splunk SOAR Automation Assessment Service [Consulting]
- Dashboard/SPL Creation Pack [Implementation/Building Support]
- Version upgrade service [implementation and construction support]
- Splunk Premium Apps construction support service [implementation and construction support]
- Splunk Security Log Analysis Start Package [Original App/Service]
- Splunk × CrowdStrike Falcon Insight, Macnica Original App [Original App/Service]
- Government uniform standard compatible App [Original App/Service]
- Smart Security Monitoring App [Original App/Service]
- Splunk × LANSCOPE Original App [Original App/Service]
- Security Monitoring App for Box [Original App/Service]
- Cloud Security Monitoring App [Original App/Service]
- SIEM Operation Monitoring Service [Original App/Service]
- List of services
- Macnica Premium Support for Splunk (utilization support, version upgrade monitoring)
- Macnica Premium Support for Splunk Skill Up Package
Specifications/Technical Information
Application for evaluation machine
- FAQ
Splunk
Splunk
Frequently Asked Questions
What is Splunk?
What is Splunk?
Is Splunk a service, an appliance, or software?
What problems can Splunk solve?
Who Uses Splunk?
What are you most likely to use Splunk for?
Is Splunk open source?
What is the difference between a Free Edition license and an Enterprise Edition license?
Pricing information
How much does Splunk Enterprise Edition cost?
Forwarders
What is the difference between Universal Forwarder and Heavy Forwarder?
Notes on installation
How long does it take to install Splunk?
What is the impact of Splunk on production systems, applications and networks? Also how much memory do you use?
system requirements
Does Splunk perform better with multiple CPUs or multiple cores?
What platforms does Splunk run on?
Does Splunk Need an Agent?
Data ingestion
What settings are required to import Shift JIS log files with Splunk?
Is it possible not to import data containing specific characters?
Splunk-specific terminology
Attribute
Indexer
Sub Search
Search head
Stanza
Dashboard
Data model
Panel
Forwarder
Technical informationFAQ
Feature Description
Priority to recognize the timezone of ingested data
How to include files using the add oneshot command
Shortcut keys available in the search bar
How to truncate/round off decimals when searching
How to specify a relative date and time range using earliest/latest
Effects of change of era name and addition/change of national holidays
How to enable/disable splunk alert settings from CLI
What happens when you set the user's time zone
How leap seconds affect Splunk Enterprise behavior
How administrators can identify users who have logged into or out of Splunk
Use of Apache Struts in Splunk
Splunk cron behavior
How to search by distinguishing between uppercase and lowercase letters
How to create simple dummy data
How to change the order of columns in statistics
How to change the background color of the search Box
Concept of license consumption when importing compressed files
How to CIDR match in Lookup table
How to check the compression ratio of data ingested into Splunk
Role specification and creation procedure
How to output search results in CSV format in Splunk server
How to simplify and display search sentences using the macro function
Behavior if no index is specified in the search statement
The order in which timestamps are recognized
How to easily search for events in a specific time period
How to display numerical values in % on a pie chart
Remove (hide) any event from search results using the delete command
Setting method
How to delete data
How to enable SSL communication for Splunk Web
How to use arbitrary self-signed certificates for SSL communication in Splunk Web
How to transfer the search head's internal logs and summary index to the indexer
How to filter Windows event logs
Maximum size of one event and how to change it
Workaround when fields are displayed twice when searching logs in JSON format
Procedure to stop and start all Splunk services in a cluster environment
How to renew the default server certificate
How to change the source type name used when searching
How to update SplunkWeb's default server certificate (cert.pem)
SplunkWeb's default server certificate (cert.pem) expiration date and how to check
How to import only additional data
Notes on deleting users
How to limit the searchable time range for each user
How to increase chart types
How to add an arbitrary search period to the time range selection on the search screen
Retention period for search results
How to enable/disable deployment server and client features
How not to import files older than a certain time (using ignoreOlderThan)
MMDB file update procedure
How to set up the log to be rotated
How to change IP address and host name
How to set fields for data output in different formats
How to reduce the size of the _audit index
How to turn off external communication from Splunk in settings
How to change From of alert mail
Timing of lookup table reference by alerts and reports
How to specify files to include/exclude using regular expressions
How to delete an app deployed to a search head cluster
How to allow users to only view and search specific dashboards
How to display all values in a graph displayed by timechart command
How to make specific keywords stand out on search results
How to mask when importing logs
About processes and directories excluded from scanning by antivirus products
How not to capture past Windows event logs
How to change the font used when outputting PDF from the dashboard to Japanese
How to change the initial password of admin user in universal forwarder
How to change the data save destination folder path
How to not capture certain events
CSV data field extraction method
How to limit concurrent search executions by user or role
How to display SplunkWeb in Japanese
In charge of Macnica Splunk Co., Ltd.
- TEL:045-476-2010
- E-mail:splunk-sales@macnica.co.jp
Mon-Fri 8:45-17:30