Deployment Architecture

forwarding to public ip via splunkuniversalforwarder

ksaritek
Engager

I am already newbie to splunk and ip-port config at linux env.

I have two instances at Amazon, i set up splunkforwarder as
./splunk add forward-server :

but when i check via netstat, forwarder tries to send wrong host:port

i already disable iptables, what do i suppose to do? forwarding via httpd or else?

Tags (1)
0 Karma
1 Solution

ksaritek
Engager

just solve it.

http://support.rightscale.com/12-Guides/Dashboard_Users_Guide/Clouds/AWS_Region/EC2_Security_Groups/...

keep that link. EC2 instances can talk each other via private ip, but check your security group.

if your port is not defined in security group, define it.

View solution in original post

0 Karma

ksaritek
Engager

just solve it.

http://support.rightscale.com/12-Guides/Dashboard_Users_Guide/Clouds/AWS_Region/EC2_Security_Groups/...

keep that link. EC2 instances can talk each other via private ip, but check your security group.

if your port is not defined in security group, define it.

View solution in original post

0 Karma
.conf21 CFS Extended through 5/20!

Don't miss your chance
to share your Splunk
wisdom in-person or
virtually at .conf21!

Call for Speakers has
been extended through
Thursday, 5/20!