Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net. The EventId.Net for Splunk Add-on assumes that Splunk is collecting information from Windows servers and workstation via the Splunk Universal Forwarder.
The description for Event ID ( 222 ) in Source ( SWS ) cannot be found. The local computer may not have the necessary registry information or message DLL files to display messages from a remote computer. You may be able to use the /AUXSOURCE= flag to retrieve this description; see Help and Support for details. The following information is part of the event: Error: "recvfrom" on [0.0.0.0] failed error 10054.
|English: Request a translation of the event description in plain English.|
|Concepts to understand:|
What is a DLL?
What is causing the “The description for Event ID ( … ) in Source ( …. ) cannot be found… “?
The symptom was that web browsing was down. Internet addresses could be pinged by both name and number, indicating that DNS servers were working.
This error appeared many times in the application log. It was logged by Symantec Web Security (SWS) on the proxy server. It indicates that the proxy could not connect to a requested site. Upon further investigation, I could tell that it was because the DNS service was problematic. It had not failed completely, but was not working correctly. Rebooting the server running SWS fixed the problem. DNS is now working and we no longer receive the SWS message.
|Private comment: Subscribers only. See example of private comment|
|Search: Google - Bing - Microsoft - Yahoo - EventID.Net Queue (0) - More links...|
Send comments or solutions
- Notify me when updated