Solved: Which ports should be opened on Splunk sever, to l...

RichaSingh · ‎07-31-2015

All Splunk Alerts log into another monitoring tool called Zenoss.
A shell script (running one splunk search head) passes all the information as an alert is triggered, & sends to zenoss at port 8081,.
Recently firewall change led to blocking all ports.

Now which ports should I request to be enable so that the same shell script is able to communicates & send data to zenoss:8081 ?

richgalloway · ‎07-31-2015

There is no way to know which port will be used on the sending (Splunk) side, other than it will be greater than 1024. Outgoing ports are assigned as connections are made so they can't be determined in advance. Ask for all ports (or all > 1024) on the Splunk side and 8081 on the Zenoss side.

---
If this reply helps you, Karma would be appreciated.

View solution in original post

richgalloway · ‎07-31-2015

There is no way to know which port will be used on the sending (Splunk) side, other than it will be greater than 1024. Outgoing ports are assigned as connections are made so they can't be determined in advance. Ask for all ports (or all > 1024) on the Splunk side and 8081 on the Zenoss side.

---
If this reply helps you, Karma would be appreciated.

Which ports should be opened on Splunk sever, to let splunk alerts reach zenoss application at 8081?

Announcing Scheduled Export GA for Dashboard Studio

Extending Observability Content to Splunk Cloud

More Control Over Your Monitoring Costs with Archived Metrics GA in US-AWS!