Snort mailing list archives

Re: Remote NIDS

From: "Sp0oKeR Labs" <spooker () spooker com br>
Date: Wed, 10 Dec 2003 20:47:14 -0300

At your snort.conf, in all sensors use:

output database: log, mysql, user=user_snort password=pass_snort dbname=db_snort host=ip_server_mysql_acid

You can create the snort database with create_mysql at contrib/ directory .
Best Regards,

Sp0oKeR
  ----- Original Message ----- 
  From: Grammer, Christopher S 
  To: snort-users () lists sourceforge net 
  Sent: Wednesday, December 10, 2003 7:03 PM
  Subject: [Snort-users] Remote NIDS


  I am looking for a method to have remote NIDS log alerts to a central SNORT/Acid box running MySQL and Redhat 9.0.

  Anyone have a link for docs on this or recommendations?

   

  Chris

Current thread:

Remote NIDS Grammer, Christopher S (Dec 10)
- Re: Remote NIDS Sp0oKeR Labs (Dec 10)
- Re: Remote NIDS Dirk Geschke (Dec 11)
  - Re: Remote NIDS Paul Schmehl (Dec 11)