Hi folks, Trying to get receive data in Splunk to work. It is so confusing as it has no way to set things up properly that I can find for receiving TCPDUMP stream from another machine? I want to get things set up so that I can just have the stream sent to Splunk on a specific port and it will allow the connection then the stream will be processed. Does anyone know how this can be achieved please? I've been trying to get it working and I'm not getting anywhere. I need something that will process all the connections, collate and categorise, as well as check the data that is sent so I can track full connections and data there in.  Or is Splunk just not able to do it? ... View more