Hello, we are trying out the SplunkAppforInfrastructure. With the easy install script for windows, we get the datain. Fine. But we dont want to run the script on every universal forwarder m...
I have installed Windows infrastructureapp on Splunk search head (which is a server) The app requires multiple indexes(msad, perfmon, wineventlog) and all indexes are receiving data except for...
I'm seeing the error below under messages in my Splunk enterprise console:
Missing or malformed messages.conf stanza for TCPOUT:FORWARDING_BLOCKED_Indexer IP ADDress_default-autolb-group DC-Host N...