×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
CHIBUIKEM
Engager
Member since: ‎12-15-2025
‎12-19-2025
Community Statistics
Posts 5
Solutions 0
Karma Given 1
Karma Received 0
Member Since ‎12-15-2025
Activity Feed
View All

Re: My Universal Splunk Forwarder

by in Getting Data In
‎12-18-2025 03:31 PM
‎12-18-2025 03:31 PM
Thanks Thomas, for your response However I have changed the network to bridged but its still giving me that same wrong response this is the response I get tcp_conn_open_afux  ossocket_connect failed with winsock error #10061 ( it says it three times ) then it says Active forwards none, configured but inactive forwards 10.71.224.254:9997 I also attached the picture  image of my vm for a clearer view in the first post. ... View more

My Universal Splunk Forwarder

by in Getting Data In
‎12-16-2025 03:56 PM
‎12-16-2025 03:56 PM
Hello Everyone,  please for the past four weeks I have been struggling with ensuring that the Universal splunk Forwarder which I installed in my windows 10 virtual machine with sysmon to send logs to my Splunk Enterprise, which is also installed in my host machine (laptop) has been giving me various wrong output, despite the fact that I have configured both the input.conf and output.conf I have also made sure my windows 10 virtual machine can ping my splunk enterprise machine and I also used the command netstat anob find str9997 and it showed me listening I also ensure my firewall is not blocking any port I also enabled the default port 9997 receiving in my splunk enterprise despite all these it is still showing me Active forwards none Configured but inactive forwards 192.168.56.1.9997. I also want to ask a question because my windows 10 virtual machine is set to host only network could that be an obstruction and initially when I configured it, it was fine but now it is giving me such wrong response could it be the authentication. I  also wanted to ask should I use the password of my splunk enterprise when I am asked for an authentication usernane and password in my splunk forwarder ... View more
Labels

Re: Can anyone explain me how to on board data in ...

by in Getting Data In
‎12-15-2025 03:16 PM
‎12-15-2025 03:16 PM
Hello please I asked an important question but it is yet to reflect on the activity for people to see it and give me a solution, although I am New, I also checked my profile I saw 2 posts there. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎12-19-2025 09:00 AM
Karma given to
View All