SIEM Agent fails to connect to syslog server
search cancel

SIEM Agent fails to connect to syslog server

book

Article ID: 171460

calendar_today

Updated On:

Products

CASB Security Standard CASB Security Premium CASB Security Advanced CASB Audit CASB Gateway CASB Gateway Advanced

Issue/Introduction

Problems sending SIEM traffic to Arcsight Splunk or other syslog server.

Resolution

If the SIEM Agent should write to a remote computer, use the “-t” switch to specify the target using the format host:port.
Example -t  10.0.0.1:3128

If the SIEM Agent should write to a local computer, do not use the “-t” switch.
A network socket is expected. 
Do not use example: -t 127.0.0.1:3128
 

Powered by Wolken Software