-
公开(公告)号:US12204531B1
公开(公告)日:2025-01-21
申请号:US17702500
申请日:2022-03-23
Applicant: Splunk Inc.
Inventor: Michael Dickey
IPC: G06F16/245 , G06F16/2455
Abstract: The disclosed embodiments provide a method and system for processing network data. During operation, the system obtains one or more event streams from one or more remote capture agents over one or more networks, wherein the one or more event streams include event data generated from network packets captured by the one or more remote capture agents. Next, the system applies one or more transformations to the one or more event streams to obtain transformed event data from the event data. The system then enables querying of the transformed event data.
-
公开(公告)号:US20190273670A1
公开(公告)日:2019-09-05
申请号:US16417315
申请日:2019-05-20
Applicant: Splunk Inc.
Inventor: Michael Dickey
Abstract: The disclosed embodiments provide a method and system for processing network data. During operation, the system obtains, at a remote capture agent, configuration information for the remote capture agent from a configuration server over a network. Next, the system uses the configuration information to configure the generation of event data from network data obtained from network packets at the remote capture agent. The system then uses the configuration information to configure transformation of the event data or the network data into transformed event data at the remote capture agent.
-
公开(公告)号:US20190245950A1
公开(公告)日:2019-08-08
申请号:US16384688
申请日:2019-04-15
Applicant: Splunk Inc.
Inventor: Vladimir A. Shcherbakov , Michael Dickey
Abstract: The disclosed embodiments provide a system that processes network data. During operation, the system obtains, at a remote capture agent, a first protocol classification for a first packet flow captured by the remote capture agent. Next, the system uses configuration information associated with the first protocol classification to build a first event stream from the first packet flow at the remote capture agent, wherein the first event stream comprises time-series event data generated from network packets in the first packet flow based on the first protocol classification. The system then transmits the first event stream over a network for subsequent storage and processing of the first event stream by one or more components on the network.
-
公开(公告)号:US10374883B2
公开(公告)日:2019-08-06
申请号:US15885712
申请日:2018-01-31
Applicant: Splunk Inc.
Inventor: Michael Dickey
Abstract: The disclosed embodiments provide a method and system for facilitating the processing of network data. During operation, the system obtains, at a remote capture agent, configuration information for the remote capture agent from a configuration server over a network. Next, the system uses the configuration information to configure the generation of event data from network packets at the remote capture agent. Upon receiving an update to the configuration information from the configuration server, the system uses the update to reconfigure the generation of the event data by the remote capture agent during runtime of the remote capture agent.
-
公开(公告)号:US20190018877A1
公开(公告)日:2019-01-17
申请号:US16134778
申请日:2018-09-18
Applicant: Splunk Inc.
Inventor: Michael Dickey
IPC: G06F17/30
Abstract: The disclosed embodiments provide a method and system for processing network data. During operation, the system obtains one or more event streams from one or more remote capture agents over one or more networks, wherein the one or more event streams include event data generated from network packets captured by the one or more remote capture agents. Next, the system applies one or more transformations to the one or more event streams to obtain transformed event data from the event data. The system then enables querying of the transformed event data.
-
Patent Agency Ranking
公开(公告)号:US20180167276A1
公开(公告)日:2018-06-14
申请号:US15885712
申请日:2018-01-31
Applicant: Splunk Inc.
Inventor: Michael Dickey
IPC: H04L12/24
CPC classification number: H04L41/0816 , H04L41/0856
Abstract: The disclosed embodiments provide a method and system for facilitating the processing of network data. During operation, the system obtains, at a remote capture agent, configuration information for the remote capture agent from a configuration server over a network. Next, the system uses the configuration information to configure the generation of event data from network packets at the remote capture agent. Upon receiving an update to the configuration information from the configuration server, the system uses the update to reconfigure the generation of the event data by the remote capture agent during runtime of the remote capture agent.
-
公开(公告)号:US20180048741A1
公开(公告)日:2018-02-15
申请号:US15799158
申请日:2017-10-31
Applicant: Splunk Inc.
Inventor: Vladimir A. Shcherbakov , Michael Dickey
Abstract: The disclosed embodiments provide a system that processes network data. During operation, the system obtains, at a remote capture agent, a first protocol classification for a first packet flow captured by the remote capture agent. Next, the system uses configuration information associated with the first protocol classification to build a first event stream from the first packet flow at the remote capture agent, wherein the first event stream comprises time-series event data generated from network packets in the first packet flow based on the first protocol classification. The system then transmits the first event stream over a network for subsequent storage and processing of the first event stream by one or more components on the network.
-
公开(公告)号:US20180006911A1
公开(公告)日:2018-01-04
申请号:US15709343
申请日:2017-09-19
Applicant: Splunk Inc.
Inventor: Michael Dickey
CPC classification number: H04L43/04 , H04L41/046 , H04L41/0816 , H04L41/0856 , H04L43/106
Abstract: The disclosed embodiments provide a method and system for processing network data. During operation, the system obtains, at a remote capture agent, configuration information for the remote capture agent from a configuration server over a network. Next, the system uses the configuration information to configure the generation of event data from network data obtained from network packets at the remote capture agent. The system then uses the configuration information to configure transformation of the event data or the network data into transformed event data at the remote capture agent.
-
公开(公告)号:US20170331930A1
公开(公告)日:2017-11-16
申请号:US15665268
申请日:2017-07-31
Applicant: Splunk Inc.
Inventor: Vladimir A. Shcherbakov , Michael Dickey
Abstract: The disclosed embodiments provide a system that processes network data. During operation, the system obtains, at a remote capture agent, a first protocol classification for a first packet flow captured by the remote capture agent. Next, the system uses configuration information associated with the first protocol classification to build a first event stream from the first packet flow at the remote capture agent, wherein the first event stream comprises time-series event data generated from network packets in the first packet flow based on the first protocol classification. The system then transmits the first event stream over a network for subsequent storage and processing of the first event stream by one or more components on the network.
-
公开(公告)号:US20150295766A1
公开(公告)日:2015-10-15
申请号:US14253753
申请日:2014-04-15
Applicant: Splunk Inc.
Inventor: Michael Dickey
IPC: H04L12/24
CPC classification number: H04L43/04 , H04L41/046 , H04L41/0816 , H04L41/0856 , H04L43/106
Abstract: The disclosed embodiments provide a method and system for processing network data. During operation, the system obtains, at a remote capture agent, configuration information for the remote capture agent from a configuration server over a network. Next, the system uses the configuration information to configure the generation of event data from network data obtained from network packets at the remote capture agent. The system then uses the configuration information to configure transformation of the event data or the network data into transformed event data at the remote capture agent.
Abstract translation: 所公开的实施例提供了一种用于处理网络数据的方法和系统。 在操作期间,系统在远程捕获代理处通过网络从配置服务器获取远程捕获代理的配置信息。 接下来,系统使用配置信息来配置从远程捕获代理处的网络数据包获得的网络数据生成事件数据。 系统然后使用配置信息将事件数据或网络数据的变换配置为远程捕获代理的变换事件数据。
-
-
-
-
-
-
-
-
-
Search Results
30
records
(took 0.03 seconds)
