Re: Unrecognised syslog facility/priority in snort

[<wkitty42 () windstream net>]

i've never used remote syslog but i have to wonder if perhaps the syslog machine has not been told to allow the remote 
snort machine to file its log entries... you say that you can see the log traffic arriving but it is not being logged 
by the syslog app... that would seem to indicate that the syslog app is either not seeing the traffic or it is 
filtering it because the remote machine is not allowed to log its entries...

so, i think your problem is on the syslog machine and specifically within the syslog app's allowance configs... can 
other remote machines log to that syslog machine??

------------------------------------------------------------------------------
October Webinars: Code for Performance
Free Intel webinars can help you accelerate application performance.
Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most from 
the latest Intel processors and coprocessors. See abstracts and register >
http://pubads.g.doubleclick.net/gampad/clk?id=60134071&iu=/4140/ostg.clktrk

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!