Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Barnyard2 not inputting portscans (was Unified Logging - BASE - Portscans)

From: beenph <beenph () gmail com>
Date: Wed, 27 Jul 2011 09:34:41 -0400
On Wed, Jul 27, 2011 at 9:27 AM, James Lay <jlay () slave-tothe-box net> wrote:

Heh..fail ;)

Jul 27 07:26:05 gateway barnyard2[30517]:         --== Initializing
Barnyard2 ==--
Jul 27 07:26:05 gateway barnyard2[30517]: Initializing Input Plugins!
Jul 27 07:26:05 gateway barnyard2[30517]: Initializing Output Plugins!
Jul 27 07:26:05 gateway barnyard2[30517]: Parsing config file
"/opt/etc/snort/barnyard2.conf"
Jul 27 07:26:09 gateway barnyard2[30517]: Log directory =
/var/log/barnyard2
Jul 27 07:26:09 gateway barnyard2[30517]: FATAL ERROR: Unified2Init():
Can't start with NULL arguments





Sorry i forgot to tell you that you need to modify your barnyard2
configuration file with the following
arguments on your input unified2 line.

to the following

input unified2: input_mode

and add one of the following mode  unified2, alert_unified2,
log_unified2 (depending on the type of unified2 output mode you use
for snort).


-elz

------------------------------------------------------------------------------
Got Input?   Slashdot Needs You.
Take our quick survey online.  Come on, we don't ask for help often.
Plus, you'll get a chance to win $100 to spend on ThinkGeek.
http://p.sf.net/sfu/slashdot-survey
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Please see http://www.snort.org/docs for documentation
Previous By Date Next
Previous By Thread Next

Current thread: