https://community.splunk.com/t5/Security/How-can-i-add-udp-port-514-and-161-on-the-splunk/m-p/165293#M4910 <P>I am using centos and i have opened the ports on the iptables but now if i try to add them on the ./splunk they give me the following messages:</P> <P>root@localhost intern.network_trainee]# cd /opt/splunk/bin/</P> <P>[root@localhost bin]# ./splunk add udp 514 -sourcetype syslog<BR /> In handler 'udp': Parameter name: UDP port 514 is not available.</P> <P>[root@localhost bin]# ./splunk add udp 161 -sourcetype snmp<BR /> In handler 'udp': Parameter name: UDP port 161 is not available.</P> <P>[root@localhost bin]# </P> <P>And what confuses me the most is the $SPLUNK_HOME and /opt/spunk/ , is there a difference between the two directories? </P> Wed, 17 Jun 2015 03:53:19 GMT cebo_myeza 2015-06-17T03:53:19Z https://community.splunk.com/t5/Security/How-can-i-add-udp-port-514-and-161-on-the-splunk/m-p/165293#M4910 <P>I am using centos and i have opened the ports on the iptables but now if i try to add them on the ./splunk they give me the following messages:</P> <P>root@localhost intern.network_trainee]# cd /opt/splunk/bin/</P> <P>[root@localhost bin]# ./splunk add udp 514 -sourcetype syslog<BR /> In handler 'udp': Parameter name: UDP port 514 is not available.</P> <P>[root@localhost bin]# ./splunk add udp 161 -sourcetype snmp<BR /> In handler 'udp': Parameter name: UDP port 161 is not available.</P> <P>[root@localhost bin]# </P> <P>And what confuses me the most is the $SPLUNK_HOME and /opt/spunk/ , is there a difference between the two directories? </P> Wed, 17 Jun 2015 03:53:19 GMT https://community.splunk.com/t5/Security/How-can-i-add-udp-port-514-and-161-on-the-splunk/m-p/165293#M4910 cebo_myeza 2015-06-17T03:53:19Z https://community.splunk.com/t5/Security/How-can-i-add-udp-port-514-and-161-on-the-splunk/m-p/165294#M4911 <P>Hi cebo_myeza,</P> <P>exactly like answered here <A href="http://answers.splunk.com/answers/242650/how-to-allow-splunk-to-connect-udp-161-port-in-lin.html">http://answers.splunk.com/answers/242650/how-to-allow-splunk-to-connect-udp-161-port-in-lin.html</A><BR /> Make sure the ports are not in use, also check any SELINUX settings.</P> <P>cheers, MuS</P> Wed, 17 Jun 2015 04:19:55 GMT https://community.splunk.com/t5/Security/How-can-i-add-udp-port-514-and-161-on-the-splunk/m-p/165294#M4911 MuS 2015-06-17T04:19:55Z https://community.splunk.com/t5/Security/How-can-i-add-udp-port-514-and-161-on-the-splunk/m-p/165295#M4912 <P>in order to use ./splunk they say i must set environmental variables, like below</P> <P>export SPLUNK_HOME=/opt/splunk<BR /> export PATH=$SPLUNK_HOME/bin:$PATH</P> <P>Do i have to type this inside the setEnv file</P> Mon, 28 Sep 2020 20:16:52 GMT https://community.splunk.com/t5/Security/How-can-i-add-udp-port-514-and-161-on-the-splunk/m-p/165295#M4912 cebo_myeza 2020-09-28T20:16:52Z https://community.splunk.com/t5/Security/How-can-i-add-udp-port-514-and-161-on-the-splunk/m-p/165296#M4913 <P>You can use the file provided by Splunk like this:</P> <PRE><CODE>source /opt/splunk/bin/setSplunkEnv </CODE></PRE> Wed, 17 Jun 2015 20:26:36 GMT https://community.splunk.com/t5/Security/How-can-i-add-udp-port-514-and-161-on-the-splunk/m-p/165296#M4913 MuS 2015-06-17T20:26:36Z