I have installed splunk on a FreeBSD 8.3 server and a universal forwarder on a different FreeBSD machine that I need to send logs and system health. The forwarder has been configured to communicate with the server and I can see the connections in the deployment monitor.
My question is how do I monitor what information is being send and where can I find this information on the main server. Do I have to perform some further configuration to the universal forwarder? Any help will be appreciated!
... View more