Installation
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

UF installation issues

greglousteau
New Member
‎08-09-2018 02:20 PM

I have a syslog server running on my LAN and multiple devices logging to it. I tried installing the UF onto this host (Win 10 VM), but I'm not seeing any data appear in my Splunk Cloud Instance, nor am I getting any output from this command on the Win10 syslog host?

Any guidance would be apprecaited

C:\Program Files\SplunkUniversalForwarder\bin>splunk list monitor

C:\Program Files\SplunkUniversalForwarder\bin>

Tags (1)
0 Karma
Reply

greglousteau
New Member
‎08-09-2018 04:02 PM

yes, I told UF to monitor the files with this command (on syslog host) but I never got any feedback output after executing the command, thats why I tried the list but it also gave no feedback/output:
splunk add monitor c:\kiwi\syslog

I think I did step 2 send data to splunk indexer. with my UF credentials file that I dloaded inside my cloud instance, yes

Not sure about step 3, the port (i forget which one) that the installer asked me for? i have to do something in the cloud instance too?

0 Karma
Reply

adonio
Ultra Champion
‎08-09-2018 04:32 PM

so it is a cloud instance?
is it the cloud trial?
can you access the search bar?
try and search index = _internal and see if there is any data from the forwarder
check how many values, the host field has

0 Karma
Reply

adonio
Ultra Champion
‎08-09-2018 03:43 PM

did you tell the forwarder to monitor the files?
did you tell the forwarder to send the data to splunk indexer?
did you enable inputs (open ports) on your indexer?

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Observability Simplified: Combining User Experience, Application Performance & ...

Tech Talk Observability Simplified: Combining User Experience, Application Performance & Network ...

Event Series May & June: From Network Visibility to Service Intelligence

Unifying the Network: Moving from Alert Noise to Service Intelligence with Splunk ITSI In today’s hybrid ...

Global Splunk User Group Events: May + June 2026

Your Splunk Community Awaits: Discover Upcoming User Group Events Worldwide    Staying ahead in the fast-paced ...