Re: Snort u2 output with vlan_event_type not supported by barnyard2?

[beenph <beenph () gmail com>]

On Mon, Jun 17, 2013 at 2:05 PM, Agus <agus.262 () gmail com> wrote:
> Hi guys,
Hi Agus,

> When configuring output u2 with clan_event_type, it seems that barnyard
> doesn't output at all. When i remove it, it starts logging. Anyone is using
> B2 with vlan?

UNIFIED2_IDS_EVENT_VLAN , type 104 and
UNIFIED2_IDS_EVENT_MPLS,  type 99

Are parsed from the unified2 file but will not be sent to output plugins.

Expect full logging support in barnyard2 2.2.

In the meantime its not had to adapt current code to log those event
type with or without
the vlan information, if you need assistance or pointed to do so, do
not hesitate to mail
barnyard2-devel@googlegroups.

Cheers,
-elz

------------------------------------------------------------------------------
This SF.net email is sponsored by Windows:

Build for Windows Store.

http://p.sf.net/sfu/windows-dev2dev
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!