Re: Snort Alert Mysql Query

[Rob MacGregor <rob.macgregor () gmail com>]

On Mon, Feb 15, 2016 at 3:38 PM ARUN LAL <arunlal7701 () gmail com> wrote:

> Hi Rob,
>
> Thanks i understand the sid and cid. The "cid" values is get changed it
> depend on the number of event.
>
> Could you please assist me to configure each snort alerts to a central
> database and we need to view all the alerts of the snort servers in one
> snorby server.

1) If you go read the barnyard2 documentation I'm sure you'll find the
information you're after
2) Maybe the hand-holding Security Onion provides is something you'd find
helpful?

As you're unwilling to keep this on the mailing list, despite my asking you
to, this is the last response you'll get from me on this thread ;)
-- 
Rob MacGregor
      Whoever fights monsters should see to it that in the process he
        doesn't become a monster.                  Friedrich Nietzsche

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=272487151&iu=/4140

_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
http://www.snort.org


Please visit http://blog.snort.org for the latest news about Snort!