-
公开(公告)号:US10951474B2
公开(公告)日:2021-03-16
申请号:US16445155
申请日:2019-06-18
Applicant: Splunk Inc.
Inventor: Michael Dickey
Abstract: The disclosed embodiments provide a method and system for facilitating the processing of network data. During operation, the system obtains, at a remote capture agent, configuration information for the remote capture agent from a configuration server over a network. Next, the system uses the configuration information to configure the generation of event data from network packets at the remote capture agent. Upon receiving an update to the configuration information from the configuration server, the system uses the update to reconfigure the generation of the event data by the remote capture agent during runtime of the remote capture agent.
-
公开(公告)号:US10701191B2
公开(公告)日:2020-06-30
申请号:US16384688
申请日:2019-04-15
Applicant: Splunk Inc.
Inventor: Vladimir A. Shcherbakov , Michael Dickey
Abstract: The disclosed embodiments provide a system that processes network data. During operation, the system obtains, at a remote capture agent, a first protocol classification for a first packet flow captured by the remote capture agent. Next, the system uses configuration information associated with the first protocol classification to build a first event stream from the first packet flow at the remote capture agent, wherein the first event stream comprises time-series event data generated from network packets in the first packet flow based on the first protocol classification. The system then transmits the first event stream over a network for subsequent storage and processing of the first event stream by one or more components on the network.
-
公开(公告)号:US20150293955A1
公开(公告)日:2015-10-15
申请号:US14253713
申请日:2014-04-15
Applicant: Splunk Inc.
Inventor: Michael Dickey
IPC: G06F17/30
CPC classification number: G06F17/30424 , G06F17/30516
Abstract: The disclosed embodiments provide a method and system for processing network data. During operation, the system obtains one or more event streams from one or more remote capture agents over one or more networks, wherein the one or more event streams include event data generated from network packets captured by the one or more remote capture agents. Next, the system applies one or more transformations to the one or more event streams to obtain transformed event data from the event data. The system then enables querying of the transformed event data.
Abstract translation: 所公开的实施例提供了一种用于处理网络数据的方法和系统。 在操作期间,系统通过一个或多个网络从一个或多个远程捕获代理获得一个或多个事件流,其中所述一个或多个事件流包括由所述一个或多个远程捕获代理捕获的网络分组生成的事件数据。 接下来,系统将一个或多个变换应用于一个或多个事件流,以从事件数据获得变换的事件数据。 系统然后可以查询已转换的事件数据。
-
4.发明授权公开(公告)号:US11863408B1
公开(公告)日:2024-01-02
申请号:US17578206
申请日:2022-01-18
Applicant: Splunk Inc.
Inventor: Michael Dickey
IPC: H04L43/04 , H04L41/0853 , H04L41/046 , H04L41/0816 , H04L43/106
CPC classification number: H04L43/04 , H04L41/046 , H04L41/0816 , H04L41/0856 , H04L43/106
Abstract: The disclosed embodiments provide a method and system for processing network data. During operation, the system obtains, at a remote capture agent, configuration information for the remote capture agent from a configuration server over a network. Next, the system uses the configuration information to configure the generation of event data from network data obtained from network packets at the remote capture agent. The system then uses the configuration information to configure transformation of the event data or the network data into transformed event data at the remote capture agent.
-
公开(公告)号:US11252056B2
公开(公告)日:2022-02-15
申请号:US16417315
申请日:2019-05-20
Applicant: Splunk Inc.
Inventor: Michael Dickey
Abstract: The disclosed embodiments provide a method and system for processing network data. During operation, the system obtains, at a remote capture agent, configuration information for the remote capture agent from a configuration server over a network. Next, the system uses the configuration information to configure the generation of event data from network data obtained from network packets at the remote capture agent. The system then uses the configuration information to configure transformation of the event data or the network data into transformed event data at the remote capture agent.
-
Patent Agency Ranking
公开(公告)号:US11108659B2
公开(公告)日:2021-08-31
申请号:US16378400
申请日:2019-04-08
Applicant: Splunk Inc.
Inventor: Michael Dickey
Abstract: The disclosed embodiments provide a method and system for processing network data. During operation, the system obtains, at a remote capture agent, configuration information for the remote capture agent from a configuration server over a network. Next, the system uses the configuration information to configure the generation of event data from network data obtained from network packets at the remote capture agent. The system then uses the configuration information to configure transformation of the event data or the network data into transformed event data at the remote capture agent.
-
公开(公告)号:US10382599B2
公开(公告)日:2019-08-13
申请号:US15665268
申请日:2017-07-31
Applicant: Splunk Inc.
Inventor: Vladimir A. Shcherbakov , Michael Dickey
Abstract: The disclosed embodiments provide a system that processes network data. During operation, the system obtains, at a remote capture agent, a first protocol classification for a first packet flow captured by the remote capture agent. Next, the system uses configuration information associated with the first protocol classification to build a first event stream from the first packet flow at the remote capture agent, wherein the first event stream comprises time-series event data generated from network packets in the first packet flow based on the first protocol classification. The system then transmits the first event stream over a network for subsequent storage and processing of the first event stream by one or more components on the network.
-
公开(公告)号:US09762443B2
公开(公告)日:2017-09-12
申请号:US14253753
申请日:2014-04-15
Applicant: Splunk Inc.
Inventor: Michael Dickey
CPC classification number: H04L43/04 , H04L41/046 , H04L41/0816 , H04L41/0856 , H04L43/106
Abstract: The disclosed embodiments provide a method and system for processing network data. During operation, the system obtains, at a remote capture agent, configuration information for the remote capture agent from a configuration server over a network. Next, the system uses the configuration information to configure the generation of event data from network data obtained from network packets at the remote capture agent. The system then uses the configuration information to configure transformation of the event data or the network data into transformed event data at the remote capture agent.
-
公开(公告)号:US11314737B2
公开(公告)日:2022-04-26
申请号:US16134778
申请日:2018-09-18
Applicant: Splunk Inc.
Inventor: Michael Dickey
IPC: G06F16/245 , G06F16/2455
Abstract: The disclosed embodiments provide a method and system for processing network data. During operation, the system obtains one or more event streams from one or more remote capture agents over one or more networks, wherein the one or more event streams include event data generated from network packets captured by the one or more remote capture agents. Next, the system applies one or more transformations to the one or more event streams to obtain transformed event data from the event data. The system then enables querying of the transformed event data.
-
公开(公告)号:US10264106B2
公开(公告)日:2019-04-16
申请号:US15799158
申请日:2017-10-31
Applicant: Splunk Inc.
Inventor: Vladimir A. Shcherbakov , Michael Dickey
Abstract: The disclosed embodiments provide a system that processes network data. During operation, the system obtains, at a remote capture agent, a first protocol classification for a first packet flow captured by the remote capture agent. Next, the system uses configuration information associated with the first protocol classification to build a first event stream from the first packet flow at the remote capture agent, wherein the first event stream comprises time-series event data generated from network packets in the first packet flow based on the first protocol classification. The system then transmits the first event stream over a network for subsequent storage and processing of the first event stream by one or more components on the network.
-
-
-
-
-
-
-
-
-
Search Results
30
records
(took 0.021 seconds)
