WAF Splunk ingestion

I’ve got an open case 2698654 where we are unable to ingest WAF logs into Splunk because Cloudflare is seemingly tagging itself as a bot. The error is:

Last error: error 403: error pushing: error uploading to splunk: 403 Just a moment… <meta name=

Last error time: 2023-02-22T15:51:17Z

I’ve been told the ticket has a path to the solution already. Will not share, unless you want to, what the solution was.

Will mark this as solution, if anything else, just reply and unmark.

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.