I wanna to run WinNetMon on UF and I put to SplunkUniverstalForwarder\etc\system\local\inputs.conf
I put it to app search/local/inputs.conf
[WinNetMon://WinNetMon] addressFamily = ipv4;ipv6 direction = inbound;outbound index = win_netstat packetType = connect;accept protocol = tcp;udp
View solution in original post
