OPNsense Add-on (TA-opnsense)¶
Disclaimer
This Splunk App is community driven and not affiliated with the official OPNsense® Firewall. As such, the included documentation does not contain information on how to get started with this firewall. Rather, this documentation serves as a guide to help visualize the data in Splunk. Please visit https://opnsense.org/ for documentation on installing/configuring your own OPNsense firewall.
The OPNsense Add-on allows Splunk data administrators to map the OPNsense® Firewall events to the CIM enabling the data to be used with other Splunk Apps, such as the OPNsense App for Splunk.
Assumptions¶
This documentation assumes the following:
- You have a working OPNsense firewall.
- You have a working Splunk environment.
- Basic understanding of Splunk and OPNsense.
About¶
| Info | Description |
|---|---|
| Version | 1.5.7 - Splunkbase | GitHub |
| CIM | 5.x, 4.x |
| Vendor Product Version | OPNsense® 22, 23 |