Skip to content

OPNsense Add-on (TA-opnsense)

Disclaimer

This Splunk App is community driven and not affiliated with the official OPNsense® Firewall. As such, the included documentation does not contain information on how to get started with this firewall. Rather, this documentation serves as a guide to help visualize the data in Splunk. Please visit https://opnsense.org/ for documentation on installing/configuring your own OPNsense firewall.

The OPNsense Add-on allows Splunk data administrators to map the OPNsense® Firewall events to the CIM enabling the data to be used with other Splunk Apps, such as the OPNsense App for Splunk.

Assumptions

This documentation assumes the following:

  1. You have a working OPNsense firewall.
  2. You have a working Splunk environment.
  3. Basic understanding of Splunk and OPNsense.

About

Info Description
Version 1.5.7 - Splunkbase | GitHub
CIM 5.x, 4.x
Vendor Product Version OPNsense® 22, 23

Get Started