Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Multiple subscriptions for data_log plugin

From: Russ <rucombs () cisco com>
Date: Fri, 2 Sep 2016 09:57:41 -0400
Not presently. You could patch it to support data_log = { keys = 'key1 key2 key3' } w/o much effort. 

On 9/1/16 11:26 AM, Akhil Koul wrote:

Hello
I was wondering if there is a way to do multiple subscriptions ex.data_log = { key1 = ‘http_raw_uri’, key2= ‘http_methods' } 

or data_log = { key = ‘http_raw_uri, http_methods' }

Thanks
Akhil



------------------------------------------------------------------------------


_______________________________________________
Snort-devel mailing list
Snort-devel () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-devel
Archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-devel

Please visit http://blog.snort.org for the latest news about Snort!



------------------------------------------------------------------------------

_______________________________________________
Snort-devel mailing list
Snort-devel () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-devel
Archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-devel

Please visit http://blog.snort.org for the latest news about Snort!
Previous By Date Next
Previous By Thread Next

Current thread: