re: snort archive database question

["Lindsay Hunt" <lhunt () PRESIDIO com>]

Hello,
 
On machine 1 I have configured snort/acid/apache/mysql on Fedora Core 1. In the acid_conf.php file I have specified an 
archive database which exists on machine 2 (also running Fedora Core 1 and has mysql/acid/apache installed). Machine 2 
exists on the same /24 subnet as Machine 1. When I attempt to archive/move alerts to the archive database on machine 2 
only a few of the alerts are inserted into the archive database. I have run tcpdump on machine 2 and can see that a 
connection has been made between the 2 machines but for some reason most of the alerts, but not all, are getting lost. 
Any suggestions or help would be greatly appreciated.
 
kind regards,
 
Lindsay Hunt
N�HS^�隊X���'���u�������쵩eJ���Ů���wh��h.)��ǫ��춉�n)^"{-jYR�'�ux����觲֥��b�v��+�x,�[���텫]��"��e-櫞j+y��z�^��Z�m������֥��bzW\�o�z��z���N����ǫ�f��)��+-Jz+����b��,���y�+��޴j-��b�DK��!jx�ǫ��b�{(��칻�&ކ�i�����l���q����z����l�X��)ߣ�'��n���Jz+����b�֫r�zm��������W�r����b��醝���