Snort mailing list archives
RE: syslog output
From: "Drew Burchett" <DrewB () united-systems com>
Date: Mon, 22 May 2006 11:05:55 -0500
From what I understand, the HOST option only works on Windows installations of Snort. To configure Linux Snort to log to another machine, you need to configure it within syslog-ng itself. Drew Burchett United Systems & Software http://www.united-systems.com Phone: (270)527-3293 Fax: (270)527-3132
-----Original Message----- From: snort-users-admin () lists sourceforge net [mailto:snort-users- admin () lists sourceforge net] On Behalf Of hchlai () netscape net Sent: Monday, May 22, 2006 11:00 AM To: snort-users () lists sourceforge net Subject: [Snort-users] syslog output Can I configure Snort (running on Linux) to do syslog output to a syslog server? It seems "output alert_syslog: host=192.168.1.1, LOG_AUTH LOG_ALERT" doesn't work. I can see Snort is running, but the traffic is not going to the appropriate syslog server. It just don't do anything. Anybody has similar situation? HinSuk ___________________________________________________ Try the New Netscape Mail Today! Virtually Spam-Free | More Storage | Import Your Contact List http://mail.netscape.com ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services,
security?
Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache
Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
-- CONFIDENTIALITY NOTICE: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. -- This message has been scanned for viruses and dangerous content by MailScanner and is believed to be clean. ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid0709&bid&3057&dat1642 _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- syslog output hchlai (May 22)
- Re: syslog output James Lay (May 22)
- Message not available
- Re: syslog output hchlai (May 22)
- Re: syslog output Joel Esler (May 22)
- Re: syslog output hchlai (May 22)
- <Possible follow-ups>
- RE: syslog output Drew Burchett (May 22)