Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [Snort-users] Doubts

From: wkitty42 () windstream net
Date: Tue, 16 Feb 2016 16:59:16 -0500
On 02/11/2016 12:18 PM, ARUN LAL wrote:

Hi

Could you please explain the 4th and 5th steps in detail?

---------------------------------------
4. configure each snort with a specific identifier to keep alerts separated
by sensor in the central database. (see the -G and -logid command line
parameters)


http://manual-snort-org.s3-website-us-east-1.amazonaws.com/node11.html#SECTION00294000000000000000


5. configure each tool like barnyard2 to gather the alerts and insert them
into the central database.


i don't understand the question... each snort sensor has a barnyard2 
installation, right? each barnyard2 will /push/ the alerts to the central 
database where your monitoring takes place...

-- 
  NOTE: No off-list assistance is given without prior approval.
        *Please keep mailing list traffic on the list* unless
        private contact is specifically requested and granted.

------------------------------------------------------------------------------
Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
http://pubads.g.doubleclick.net/gampad/clk?id=272487151&iu=/4140
_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
http://www.snort.org


Please visit http://blog.snort.org for the latest news about Snort!
Previous By Date Next
Previous By Thread Next

Current thread: