Snort mailing list archives

Output CSV Problem in latest Snort at Centos 7 and Ubuntu 18.04 64bit

From: Rendi 7936 via Snort-users <snort-users () lists snort org>
Date: Tue, 10 Sep 2019 16:31:52 +0700

Good day, everyone.
Hello.

I need help to figure out what's wrong with my configuration in Snort.

1. I include *output alert_csv: /var/log/snort/snort.csv timestamp,msg* in
snort.conf.

2. I have been checked snort.conf using snort -T and passed.

3. and i use *alert tcp any any -> any any (msg:"Sample Metron Message from
Snort"; sid:999158; )* to test snort, and give output as a CSV.

alert.csv is created, but it is empty. I pretty sure followed tutorial in
https://www.snort.org/documents/snort-users-manual . But, alert.csv still
empty.

Thank you for your time.
Best regards,
Rendiyono Wahyu Saputro

_______________________________________________
Snort-users mailing list
Snort-users () lists snort org
Go to this URL to change user options or unsubscribe:
https://lists.snort.org/mailman/listinfo/snort-users

        To unsubscribe, send an email to:
        snort-users-leave () lists snort org

Please visit http://blog.snort.org to stay current on all the latest Snort news!

Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette

Current thread:

Output CSV Problem in latest Snort at Centos 7 and Ubuntu 18.04 64bit Rendi 7936 via Snort-users (Sep 10)
- Message not available
  - Message not available
    - Re: Output CSV Problem in latest Snort at Centos 7 and Ubuntu 18.04 64bit Dorian ROSSE via Snort-users (Sep 10)
    - Message not available
    - Re: Output CSV Problem in latest Snort at Centos 7 and Ubuntu 18.04 64bit Dorian ROSSE via Snort-users (Sep 10)