So I have Splunk Community deployed on a micro instance of CentOS 7 on google cloud platform.
Working with GCP helpdesk as well since the DNS entry isn't working either so I am using the external IP directly. Its been about 24 hours so any latency between networking updates should have happened by now.
Here are the configs requested.
firewall-cmd
trusted (active)
target: ACCEPT
icmp-block-inversion: no
interfaces: eth0
sources:
services:
ports: 8000/tcp 8000/udp
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
Google Cloud
splunk-allow
Network
default
Priority
1000
Direction
Ingress
Action on match
Allow
Targets
Target tags
splunk
Source filters
IP ranges
0.0.0.0
Protocols and ports
tcp:8000
udp:8000
tcp:8191
udp:8191
tcp:8089
udp:8089
Enforcement
Enabled
i too could not access my splunk wer from home browser, but my problem was precisely in GCP firewall rules: be careful with you filters (labes, masks, etc.) - there is not difficulty there, actually. have a nice day.
can u paste the settings of
- firewall-cmd list output
- Firewall settings for GCP for the open port 8000