How to resolve HTTP Event Collector "timed out" er...

farankardame · ‎06-01-2017

I have tried everything to get my Splunk Cloud HTTP Event Collector but still getting the following error:

Failed to connect to input-prd-p-xrv2bxnrrnxr.cloud.splunk.com port 8088: Timed out

Not sure what I am doing wrong, here are the things i have tried

1) Created tokens on Splunk Cloud of HEC, enabled it (tried with 2 different ones)
2) curl -k https://input-prd-p-xrv2bxnrrnxr.cloud.splunk.com:8088/services/collector -H "Authorization: Splunk 759C290E-5AE3-4FBA-8113-XXXXXXXXX" -d "{\"event\": { \"eventType\": \"Success\" }}"

Tried different variations with curl but still no luck.

Download Splunk Enterprise and HEC works perfect with that.

Is there anything I am doing wrong?

farankardame · ‎06-02-2017

I realize it was my firewall which was stopping it.

Now I get {"text":"Success","code":0} but still can't see the data in Splunk Cloud.

I have queried with index = * but still no data in the result.

Can anyone help out on that?

How to resolve HTTP Event Collector "timed out" error?