![]() If they have different timezones, then the interpreted time will be offset by the difference in the timezones. Therefor, if a Splunk server and Firewall have the same timezone, then the timestamp will be interpreted correctly by Splunk. ![]() Splunk always interprets Palo Alto Networks logs as the timezone of the Splunk server (or container). For example, if your Firewall is set to 8:00:00 EST, then the time in the syslog will be 8:00:00 (without the EST timezone).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |