Getting Data In
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

My Splunk Enterprise don't accept telnet or tcp (my computer) from different networks

Cyner__
Loves-to-Learn Everything
‎06-07-2024 07:21 AM

Hi. I am new to splunk. I have configured everything. I am trying to solve this issue for 2 days.

I have universal forwerder on the ubuntu server with different network. I have downloaded splunk enterprise to my windows 10 computer.

My port 9997 is enabled. Firewall is disabled. Even with zyxel interface i bypassed the port 9997.

My splunk is listening on port 9997.

The thing is with telnet from any other source to my computer (i tried with both my mobile internet and UF client) is still getting denied.

How should i proceed to make it work. Im stuck so bad

Thanks for your helps

this is the mobile internet test with Test-NetConnections to my pc (splunk server i guess)

ComputerName : x.x.x.x <desired.connection>

RemoteAddress : x.x.x.x <desired connection>
RemotePort : 9997
InterfaceAlias : Wi-Fi
SourceAddress : X.x.x.x <my ip>
PingSucceeded : False
PingReplyDetails (RTT) : 0 ms
TcpTestSucceeded : False

 

Labels (2)
Labels
0 Karma
Reply

tscroggins
Influencer
‎06-08-2024 11:47 AM

Hi @Cyner__,

If both devices are connected to your Zyxel access point / router using WiFi, make sure layer-2 isolation is correctly configured for the devices to communicate. You should be able to find instructions for configuring isolation white lists in your Zyxel documentation.

0 Karma
Reply

inventsekar
SplunkTrust
SplunkTrust
‎06-07-2024 10:03 AM

Hi @Cyner__ 

from the UF, are you able to ping the indexer?

from the UF to indexer, is telnet working fine?

telnet index:9997 .. is it working fine or not.. 

thanks and best regards,
Sekar

PS - If this or any post helped you in any way, pls consider upvoting, thanks for reading !
0 Karma
Reply
Get Updates on the Splunk Community!

[Puzzles] Solve, Learn, Repeat: Dynamic formatting from XML events

This challenge was first posted on Slack #puzzles channelFor a previous puzzle, I needed a set of fixed-length ...

Enter the Agentic Era with Splunk AI Assistant for SPL 1.4

  &#x1f680; Your data just got a serious AI upgrade — are you ready? Say hello to the Agentic Era with the ...

Stronger Security with Federated Search for S3, GCP SQL & Australian Threat ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...