📄️ Splunk App Installation
ElastiFlow Netflow Analytics for Splunk
📄️ Configuring Data Input & Index
In order for Splunk to receive data from the ElastiFlow Unified Flow Collector you must first configure a Data Input & an Index.
📄️ Default Search Macro
By default the ElastiFlow App for Splunk comes with a predefined default_index search macro. You can view the default index search macro by going to: Settings -> Advanced search -> "Search macros"