Has anyone seen this with NXlog when you are able to telnet to the host. When I set this up in a test lab it works fine. I assume a firewall but I can telnet fine to the host IP and port.
2016-05-20 09:41:31 ERROR om_tcp detected a connection error; An existing connection was forcibly closed by the remote host.
2016-05-20 09:41:32 INFO connecting to seclog.lowes.com:514
Very basic config.
#define ROOT C:\Program Files\nxlog
define ROOT C:\Program Files (x86)\nxlog
# For windows 2003 and earlier use the following:
Exec if $EventID NOT IN (528, 529, 567, 592, 601, 602, 608, 612, 636, 7034, 7035, 7036, 7040, 4097, 64004, 2, 3005) drop();
Path in => out