Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
81 results
Sorted by:
01-12-2022
06:00 AM
Not getting data ofter configuring TCP 80 port in inputs.conf my stanza is like this [tcp://80] connection_host = dns index = port sourcetype = syslog can you give me any idea on this. thnks i...
Labels
- Labels:
-
syslog
12-03-2012
04:51 PM
...14".
I made sure to enable ports with these lines in default-mode.conf:
[pipeline:udp]
disabled=false
But I am not getting anything coming in to Splunk.
I have cygwin installed and w...
02-16-2022
12:31 AM
We have some firewall devices sending data to one index previously. Now I have to create new index for some of the devices to send data through TCP port. I'm unable to find old index and I'm not s...
Labels
04-19-2022
08:39 AM
hi all
I am running on a windows heavy forwarder on Splunk Enterprise 8.1.7.2 and I listen to ports tcp 9514 and udp 514.
The data comes in to the main index and I perform a transforms/ props t...
Labels
05-10-2022
06:32 AM
...howing up in "Forwarder Management" but I can't seem to get event logs from any servers except the deployment server. I have enabled firewall ports outbound 8089 and inbound 9997 on the deployment server. T...
- Tags:
- splunk-cloud
- windows
Labels
- Labels:
-
inputs.conf
-
universal forwarder
-
Windows
11-01-2019
04:47 PM
1 Karma
Hi all,
I have a cluster with 2 indexers. I want to collect the UDP logs from Fortinet Firewall. I have setup the syslog forwarding from our FW to 1 indexer, but we haven't received any log data....
- Tags:
- TCP or UDP Sending
10-12-2017
05:33 PM
I have 3 different log sources sending logs to Splunk from a number of hosts on on udp 514.
Breakdown : WLC (5-6 hosts), ESX(8) and Eqallogic (6). However, so far I am only getting data from W...
- Tags:
- splunk-enterprise
09-05-2017
11:16 PM
the configuration for tcp port is below but need to the same for udp port
Transforms:
[bigmoney]
REGEX = event
DEST_KEY=_TCP_ROUTING
FORMAT=bigmoneyreader
Props:
[host::machine n...
09-25-2017
03:13 AM
....10.128 to-ports=43905
protocol=udp dst-address=110.12.197.134 in-interface=ether1
dst-port=43905
4 D ;;; upnp 10.10.10.128: Skype TCP at 10.10.10.128:43905 (3909)
chain=dstnat a...
05-04-2022
08:41 AM
...ndpoint Cloud (Cylance) to the Splunk Heavy Forwarder pushing syslogs, for then to be forwarded to the Cloud. When testing , UDP ports work and the connection is successful, h...
Labels
- Labels:
-
heavy forwarder
-
index
-
Windows
