Snort mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Snort not logging to anything

From: "Harper, Patrick" <patrick.harper () phns com>
Date: Mon, 1 Nov 2004 08:12:14 -0600
And you are reposting this an hour and a half later because?
 
-----Original Message-----
From: Patrick Marquetecken [mailto:patrick.marquetecken () pandora be] 
Sent: Monday, November 01, 2004 7:25 AM
To: Snort-users () lists sourceforge net
Subject: [Snort-users] Snort not logging to anything

Hi,

I have installed at work 3 working snort machines, and now i can't get a
test envirement to work at home.
The idee snort -> barnyard -> mysql -> one logging console with xxx

My setup:
snort.conf
var HOME_NET 190.168.123.0/24
output log_unified: filename snort.log, limit 128

There is a file in /var/log/snort
4 -rw-------   1 root  root    24 Nov  1 13:18 snort.log.1099311538

This file is always/stays empty

ps -ef shows
snort     3770     1  0 13:18 ?        00:00:00 /usr/bin/snort -D -u
snort -i eth0 -l /var/log/snort -c /etc/snort/snort.conf



barnyard
output log_acid_db: mysql, database snort, server localhost, user snort,
password snort, detail full


I have no idee whats here is wrong
Patrick


-------------------------------------------------------
This SF.Net email is sponsored by:
Sybase ASE Linux Express Edition - download now for FREE
LinuxWorld Reader's Choice Award Winner for best database on Linux.
http://ads.osdn.com/?ad_id=5588&alloc_id=12065&op=click
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users






Disclaimer:
This electronic message, including any attachments, is confidential and intended solely for use of the intended 
recipient(s). This message may contain information that is privileged or otherwise protected from disclosure by 
applicable law. Any unauthorized disclosure, dissemination, use or reproduction is strictly prohibited. If you have 
received this message in error, please delete it and notify the sender immediately. 





-------------------------------------------------------
This SF.Net email is sponsored by:
Sybase ASE Linux Express Edition - download now for FREE
LinuxWorld Reader's Choice Award Winner for best database on Linux.
http://ads.osdn.com/?ad_idU88&alloc_id065&op=click
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: